Commit 403f66f
authored
The EmbarkStudios/cargo-deny-action@v2 image ships a pre-installed
`stable` toolchain, but its `rustup show` step evaluates
rust-toolchain.toml's override before that toolchain is registered,
emitting a non-fatal but alarming 'override toolchain ... is not
installed' stack trace on every CI run. Pinning RUSTUP_TOOLCHAIN=stable
on the deny job bypasses the override probe so the log stays clean.
Enforcement is unchanged: `cargo deny check --all-features --workspace`
still runs against the full workspace (verified locally: advisories /
bans / licenses / sources all ok). The bitflags duplicate-version
warning (Finding 2) is left as-is — it's an upstream-blocked `warn`,
not a failure.
1 parent 44f4fdb commit 403f66f
1 file changed
Lines changed: 8 additions & 0 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
254 | 254 | | |
255 | 255 | | |
256 | 256 | | |
| 257 | + | |
| 258 | + | |
| 259 | + | |
| 260 | + | |
| 261 | + | |
| 262 | + | |
| 263 | + | |
| 264 | + | |
257 | 265 | | |
258 | 266 | | |
259 | 267 | | |
| |||
0 commit comments