Skip to content
CodeQL

deps(solana)(deps): bump the rust-solana group in /crates/signia-solana-client with 6 updates #176

Sign in to view logs

deps(solana)(deps): bump the rust-solana group in /crates/signia-solana-client with 6 updates

deps(solana)(deps): bump the rust-solana group in /crates/signia-solana-client with 6 updates #176

Workflow file for this run

.github/workflows/codeql.yml at d220b5a
name: CodeQL
on:
push:
branches: ["main", "SIGNIAINDEX-upload-1"]
pull_request:
branches: ["main"]
schedule:
- cron: "0 3 * * 1"
workflow_dispatch:
concurrency:
group: codeql-${{ github.ref }}
cancel-in-progress: true
permissions:
actions: read
contents: read
security-events: write
env:
NODE_VERSION: "20"
PNPM_VERSION: "9"
jobs:
analyze:
name: Analyze (${{ matrix.language }})
runs-on: ubuntu-latest
timeout-minutes: 60
strategy:
fail-fast: false
matrix:
language: ["javascript-typescript"]
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
queries: security-extended
# -------------------------------------------
# JS/TS Setup & Build
# -------------------------------------------
# Fix 1: Install pnpm before Node setup
- name: Setup pnpm (JS/TS only)
if: ${{ matrix.language == 'javascript-typescript' }}
uses: pnpm/action-setup@v4
with:
version: ${{ env.PNPM_VERSION }}
- name: Setup Node (JS/TS only)
if: ${{ matrix.language == 'javascript-typescript' }}
uses: actions/setup-node@v4
with:
node-version: ${{ env.NODE_VERSION }}
# Note: cache: "pnpm" removed to avoid "lock file not found" error during initial run
- name: Install JS dependencies (JS/TS only)
if: ${{ matrix.language == 'javascript-typescript' }}
run: |
set -euo pipefail
# Install dependencies and generate lockfile if missing
if [ -f package.json ]; then
pnpm install
fi
# Handle monorepo subdirectories
if [ -f console/web/package.json ]; then
(cd console/web && pnpm install)
fi
if [ -f console/interface/package.json ]; then
(cd console/interface && pnpm install)
fi
if [ -f sdk/ts/package.json ]; then
(cd sdk/ts && pnpm install)
fi
- name: Build JS/TS (JS/TS only)
if: ${{ matrix.language == 'javascript-typescript' }}
run: |
set -euo pipefail
# Execute build scripts if they exist
if [ -f package.json ] && pnpm -s run | grep -q "^build"; then
pnpm run build
fi
if [ -f console/web/package.json ] && (cd console/web && pnpm -s run | grep -q "^build"); then
(cd console/web && pnpm run build)
fi
if [ -f console/interface/package.json ] && (cd console/interface && pnpm -s run | grep -q "^build"); then
(cd console/interface && pnpm run build)
fi
if [ -f sdk/ts/package.json ] && (cd sdk/ts && pnpm -s run | grep -q "^build"); then
(cd sdk/ts && pnpm run build)
fi
# -------------------------------------------
# Rust Setup & Build
# -------------------------------------------
- name: Install Rust toolchain (Rust only)
if: ${{ matrix.language == 'rust' }}
uses: dtolnay/rust-toolchain@stable
- name: Cache cargo (Rust only)
if: ${{ matrix.language == 'rust' }}
uses: Swatinem/rust-cache@v2
with:
cache-on-failure: true
- name: Build Rust (Rust only)
if: ${{ matrix.language == 'rust' }}
run: |
set -euo pipefail
# Fix 2: Removed --locked to allow CI to update/generate Cargo.lock if needed
cargo build --release --manifest-path crates/signia-core/Cargo.toml
cargo build --release --manifest-path crates/signia-plugins/Cargo.toml
cargo build --release --manifest-path crates/signia-store/Cargo.toml
cargo build --release --manifest-path crates/signia-api/Cargo.toml
cargo build --release --manifest-path crates/signia-cli/Cargo.toml
cargo build --release --manifest-path crates/signia-solana-client/Cargo.toml
if [ -f programs/signia-registry/Cargo.toml ]; then
cargo build --release --manifest-path programs/signia-registry/Cargo.toml
fi
- name: Autobuild
uses: github/codeql-action/autobuild@v3
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{ matrix.language }}"