Skip to content

Commit 403f66f

Browse files
ci: silence cargo-deny toolchain-override stack trace (#81) (#167)
The EmbarkStudios/cargo-deny-action@v2 image ships a pre-installed `stable` toolchain, but its `rustup show` step evaluates rust-toolchain.toml's override before that toolchain is registered, emitting a non-fatal but alarming 'override toolchain ... is not installed' stack trace on every CI run. Pinning RUSTUP_TOOLCHAIN=stable on the deny job bypasses the override probe so the log stays clean. Enforcement is unchanged: `cargo deny check --all-features --workspace` still runs against the full workspace (verified locally: advisories / bans / licenses / sources all ok). The bitflags duplicate-version warning (Finding 2) is left as-is — it's an upstream-blocked `warn`, not a failure.
1 parent 44f4fdb commit 403f66f

1 file changed

Lines changed: 8 additions & 0 deletions

File tree

.github/workflows/ci.yml

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -254,6 +254,14 @@ jobs:
254254
name: cargo-deny
255255
runs-on: ubuntu-latest
256256
timeout-minutes: 10
257+
# The cargo-deny-action image ships a pre-installed `stable` toolchain,
258+
# but its `rustup show` step honors `rust-toolchain.toml`'s override
259+
# before that toolchain is registered, emitting an alarming (but
260+
# non-fatal) "override toolchain ... is not installed" stack trace.
261+
# Pinning RUSTUP_TOOLCHAIN bypasses the override probe so the log is
262+
# clean. See issue #81.
263+
env:
264+
RUSTUP_TOOLCHAIN: stable
257265
steps:
258266
- uses: actions/checkout@v7
259267
- uses: EmbarkStudios/cargo-deny-action@v2

0 commit comments

Comments
 (0)