chore(deps): update dependency cargo:cargo-dist to 0.31.0#1383
Open
renovate[bot] wants to merge 1 commit intomainfrom
Open
chore(deps): update dependency cargo:cargo-dist to 0.31.0#1383renovate[bot] wants to merge 1 commit intomainfrom
renovate[bot] wants to merge 1 commit intomainfrom
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
0.30.0→0.31.0Release Notes
axodotdev/cargo-dist (cargo:cargo-dist)
v0.31.0Compare Source
This release includes several new features, including the major introduction of mirrors that installers can fallback to.
Simple hosting (aka mirrors)
This release adds a new hosting method,
simple, which supports static file hosting. This allows you to host your artifacts on the hosting provider of your choice so long as it follows a similar URL structure to GitHub Releases hosting. It can also be used alongside GitHub hosting; if you specify more than one hosting provider, the secondary hosting source will be used as a mirror. The priority is determined by the order of the keys in your config. For example, this will use GitHub first and fall back to your static host if GitHub is unavailable:And this will use your static host first and fall back to GitHub if necessary:
For more information, see the docs.
Note: currently, dist won't upload artifacts to static hosts; it expects you to handle that, either manually or via writing a custom job.
Disabling npm-shrinkwrap.json for npm installers
Currently, the npm installer includes an
npm-shrinkwrap.jsonto specify the exact versions of its runtime dependencies as used at the time dist was released. Since some users would prefer looser dependency specification, this release provides an option to disable this. For more information, see the docs.Configurable build directory for generic projects
Until now, generic (non-Rust) project support has assumed that artifacts are always written to the root of the project directory. This path is now configurable using the
out-dirsetting in yourdist.toml. For example, if your project generates a binary namedexamplein a subdirectory calledbuild, you can specify:Fixes
v0.30.4Compare Source
This release contains a few minor bugfixes. It also updates dependencies, including a rimraf upgrade that resolves a CVE in @isaacs/brace-expansion. This vulnerability was not exploitable in the way dist used rimraf.
Fixes
v0.30.3Compare Source
This release contains a few minor bugfixes. It also updates dependencies, including a rimraf upgrade that resolves a CVE in glob. This vulnerability was not exploitable in the way dist used rimraf.
Fixes
sudoThanks to @zachstence for handling the rimraf/glob upgrade!
v0.30.2Compare Source
announcephase.v0.30.1Compare Source
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.