Skip to content

Update Cargo.toml (#98) #104

Merged
Dargon789 merged 64 commits into
patch-1from
master
Jan 26, 2026
Merged

Update Cargo.toml (#98) #104
Dargon789 merged 64 commits into
patch-1from
master

Conversation

@Dargon789

@Dargon789 Dargon789 commented Jan 26, 2026

Copy link
Copy Markdown
Owner

9502576

Summary by Sourcery

Update project metadata and tooling, improve installer portability and docs, and add new CI/CD workflows and issue templates.

New Features:

  • Add GitHub Actions workflows for Docker image builds, Google GKE deployment, and NPM package publishing.
  • Introduce CircleCI configurations for Rust builds, sample workflows, and custom executors.
  • Add GitHub issue templates for bugs, feature requests, and custom issues, along with a security policy document.

Enhancements:

  • Make the shell installation script more POSIX‑portable, safer with robust temp directory handling, and improve shell setup instructions.
  • Expand and reorganize README installation instructions, including Windows options and usage examples.
  • Update package and Cargo metadata (author, repository, description) and refresh various Rust and JavaScript development dependencies.
  • Tighten the proxy test server’s download logic by restricting allowed Node.js artifact paths and improving error logging.

Build:

  • Adjust Rust and Node GitHub Actions workflows, including pnpm action versions, cache configuration, and Node.js versions used in CI.

CI:

  • Add multiple CircleCI configurations for builds, caching, and example Node environments, and wire them into basic workflows.

Documentation:

  • Revise README installation sections with clearer multi‑platform guidance and add a SECURITY policy document.
  • Add standardized GitHub issue templates for bug reports, feature requests, and general issues.

Tests:

  • Harden the test proxy server’s download helper with path whitelisting and better error reporting to reduce flaky or invalid downloads.

Chores:

  • Add changeset entries describing workflow and dependency maintenance updates.

dependabot Bot and others added 30 commits May 31, 2025 16:22
Bumps the cargo group with 4 updates in the / directory: [hashbrown](https://github.com/rust-lang/hashbrown), [ring](https://github.com/briansmith/ring), [rustls](https://github.com/rustls/rustls) and [tokio](https://github.com/tokio-rs/tokio).


Updates `hashbrown` from 0.15.0 to 0.15.3
- [Release notes](https://github.com/rust-lang/hashbrown/releases)
- [Changelog](https://github.com/rust-lang/hashbrown/blob/master/CHANGELOG.md)
- [Commits](rust-lang/hashbrown@v0.15.0...v0.15.3)

Updates `ring` from 0.17.8 to 0.17.14
- [Changelog](https://github.com/briansmith/ring/blob/main/RELEASES.md)
- [Commits](https://github.com/briansmith/ring/commits)

Updates `rustls` from 0.23.16 to 0.23.23
- [Release notes](https://github.com/rustls/rustls/releases)
- [Changelog](https://github.com/rustls/rustls/blob/main/CHANGELOG.md)
- [Commits](rustls/rustls@v/0.23.16...v/0.23.23)

Updates `tokio` from 1.41.0 to 1.42.1
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-1.41.0...tokio-1.42.1)

---
updated-dependencies:
- dependency-name: hashbrown
  dependency-version: 0.15.3
  dependency-type: indirect
  dependency-group: cargo
- dependency-name: ring
  dependency-version: 0.17.14
  dependency-type: indirect
  dependency-group: cargo
- dependency-name: rustls
  dependency-version: 0.23.23
  dependency-type: indirect
  dependency-group: cargo
- dependency-name: tokio
  dependency-version: 1.42.1
  dependency-type: indirect
  dependency-group: cargo
...

Signed-off-by: dependabot[bot] <support@github.com>
…dates

Bumps the npm_and_yarn group with 2 updates in the / directory: [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) and [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime).


Updates `@babel/helpers` from 7.26.0 to 7.27.4
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.27.4/packages/babel-helpers)

Updates `@babel/runtime` from 7.26.0 to 7.27.4
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.27.4/packages/babel-runtime)

---
updated-dependencies:
- dependency-name: "@babel/helpers"
  dependency-version: 7.27.4
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@babel/runtime"
  dependency-version: 7.27.4
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
…in permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
Bumps the npm_and_yarn group with 1 update in the / directory: [brace-expansion](https://github.com/juliangruber/brace-expansion).


Updates `brace-expansion` from 1.1.11 to 1.1.12
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](juliangruber/brace-expansion@1.1.11...v1.1.12)

---
updated-dependencies:
- dependency-name: brace-expansion
  dependency-version: 1.1.12
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
Snyk has created this PR to upgrade zod from 3.25.76 to 4.0.0.

See this package in npm:
zod

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/d81b0d0c-fd3c-4e68-ba3e-6a804eb0d25e?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
Snyk has created this PR to upgrade @types/jest from 29.5.14 to 30.0.0.

See this package in npm:
@types/jest

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/d81b0d0c-fd3c-4e68-ba3e-6a804eb0d25e?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
Snyk has created this PR to upgrade prettier from 3.5.1 to 3.5.3.

See this package in npm:
prettier

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/ad4c7706-9351-484f-a545-90686691e99c?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
Snyk has created this PR to upgrade cross-env from 7.0.3 to 10.0.0.

See this package in npm:
cross-env

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/ad4c7706-9351-484f-a545-90686691e99c?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
Snyk has created this PR to upgrade prettier from 3.5.3 to 3.6.2.

See this package in npm:
prettier

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/ad4c7706-9351-484f-a545-90686691e99c?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
Snyk has created this PR to upgrade @types/node from 18.19.123 to 24.1.0.

See this package in npm:
@types/node

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/ad4c7706-9351-484f-a545-90686691e99c?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TMP-11501554

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
* Create label.yml

Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>

* Potential fix for code scanning alert no. 30: Workflow does not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>

---------

Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
…go group across 1 directory (#42)

* chore(deps): bump tracing-subscriber

Bumps the cargo group with 1 update in the / directory: [tracing-subscriber](https://github.com/tokio-rs/tracing).


Updates `tracing-subscriber` from 0.3.18 to 0.3.20
- [Release notes](https://github.com/tokio-rs/tracing/releases)
- [Commits](tokio-rs/tracing@tracing-subscriber-0.3.18...tracing-subscriber-0.3.20)

---
updated-dependencies:
- dependency-name: tracing-subscriber
  dependency-version: 0.3.20
  dependency-type: indirect
  dependency-group: cargo
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update rust.yml (#43)

Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
* fix: upgrade @changesets/cli from 2.29.6 to 2.29.7

Snyk has created this PR to upgrade @changesets/cli from 2.29.6 to 2.29.7.

See this package in npm:
@changesets/cli

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/d81b0d0c-fd3c-4e68-ba3e-6a804eb0d25e?utm_source=github&utm_medium=referral&page=upgrade-pr

* Update package.json

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

---------

Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Co-authored-by: snyk-bot <snyk-bot@snyk.io>
Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
Snyk has created this PR to upgrade cmd-ts from 0.13.0 to 0.14.1.

See this package in npm:
cmd-ts

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/d81b0d0c-fd3c-4e68-ba3e-6a804eb0d25e?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
Snyk has created this PR to upgrade p-retry from 6.2.1 to 7.0.0.

See this package in npm:
p-retry

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/d81b0d0c-fd3c-4e68-ba3e-6a804eb0d25e?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
Bumps the cargo group with 1 update in the / directory: [zip](https://github.com/zip-rs/zip2).


Updates `zip` from 2.2.0 to 6.0.0
- [Release notes](https://github.com/zip-rs/zip2/releases)
- [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md)
- [Commits](zip-rs/zip2@v2.2.0...v6.0.0)

---
updated-dependencies:
- dependency-name: zip
  dependency-version: 6.0.0
  dependency-type: direct:production
  dependency-group: cargo
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
CI:

Modify the Publish to crates.io step to use cargo publish --dry-run
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
* Create angry-moose-hug.md

Add a changeset for fnm to patch-release the package and update the release-to-cargo workflow configuration to use the master branch

Bug Fixes:

Update release-to-cargo.yml config to use the master branch
Chores:

Add angry-moose-hug changeset to bump fnm patch version

Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

* Update .changeset/angry-moose-hug.md

New Changeset File: A new changeset file, "angry-moose-hug.md", has been added to the ".changeset" directory, indicating a recorded change for release management.
Release Configuration Update: The changeset documents a "patch" type change for "fnm", specifically a fix to update the "release-to-cargo.yml" configuration to use "base:br master".

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

---------

Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
* Create funny-falcons-breathe.md
Bug Fixes:

Update release-to-cargo.yml workflow config to use master as the base branch for fnm
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

* Update .changeset/funny-falcons-breathe.md

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

---------

Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
Streamline the release workflow by restricting triggers to master and main branches and pin Node.js to version 22.

CI:

Remove the 'dev' branch from the release workflow triggers
Pin Node.js version to 22 in the release job
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Add CircleCI pipeline to build, test, and format-check the Rust project with caching for dependencies

CI:

Introduce a CircleCI config (.circleci/ci.yml) using cimg/rust:1.89.0
Run cargo fmt -- --check and cargo test in a single build-and-test job
Cache Cargo dependencies and build artifacts between builds
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
CI:

Add .circleci/ci-say-hello.yml with a say-hello job using cimg/base:current and a workflow to run it
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Add .circleci/ci-foundry.yml to scaffold a new CircleCI pipeline with a custom Docker executor, a CI job, and a workflow.

CI:

Add initial CircleCI pipeline configuration using version 2.1
Define custom executor with Docker image and Docker Hub credentials
Introduce job 'web3-defi-game-project-' with checkout and placeholder run step
Add workflow 'my-custom-workflow' to orchestrate the CI job
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Restructure the CircleCI configuration by removing the custom executor, adding a sample say-hello job and workflow, and enhancing the file with explanatory comments
CI:
Remove custom executor and replace it with a basic say-hello job using the cimg/base:current Docker image
Introduce a say-hello-workflow to orchestrate the new job
Documentation:

Add inline comments to guide configuration of executors, jobs, steps, and workflows in the CI file
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

[vc]: # sixty-rice-do.md

1 participant