Skip to content

Update locked rand dependency to clear CI audit failure#44

Merged
Nugine merged 1 commit into
mainfrom
copilot/fix-ci-failure
Apr 26, 2026
Merged

Update locked rand dependency to clear CI audit failure#44
Nugine merged 1 commit into
mainfrom
copilot/fix-ci-failure

Conversation

Copilot AI commented Apr 26, 2026

Copy link
Copy Markdown
Contributor

The scheduled CI run was failing in the audit job because Cargo.lock pinned rand to 0.10.0, which is flagged by RUSTSEC-2026-0097. This change updates the lockfile to a non-vulnerable patch release without changing crate behavior or dependency intent.

  • Root cause

    • cargo audit rejected the locked dev dependency rand 0.10.0 as unsound.

  • Change

    • Refresh the lockfile entry for rand from 0.10.0 to 0.10.1.
    • Leave Cargo.toml unchanged since the existing version requirement already permits the patched release.

  • Scope

    • Lockfile-only update.
    • No source changes, API changes, or feature changes.
- version = "0.10.0"
- checksum = "bc266eb313df6c5c09c1c7b1fbe2510961e5bcd3add930c1e31f7ed9da0feff8"
+ version = "0.10.1"
+ checksum = "d2e8e8bcc7961af1fdac401278c6a831614941f6164ee3bf4ce61b7edb162207"

@Nugine
Update locked rand version
af9d45d 
Agent-Logs-Url: https://github.com/Nugine/zuc/sessions/4e678f3a-4b36-4c93-a475-6aebca5d1a4e

Co-authored-by: Nugine <30099658+Nugine@users.noreply.github.com>
@Nugine Nugine marked this pull request as ready for review April 26, 2026 15:05
Copilot AI review requested due to automatic review settings April 26, 2026 15:05
Copilot AI reviewed Apr 26, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot wasn't able to review any files in this pull request.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@codecov

codecov Bot commented Apr 26, 2026
edited
Loading

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 86.81%. Comparing base (e7d54a9) to head (af9d45d).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main      #44   +/-   ##
=======================================
  Coverage   86.81%   86.81%           
=======================================
  Files          12       12           
  Lines         713      713           
  Branches      713      713           
=======================================
  Hits          619      619           
  Misses         89       89           
  Partials        5        5

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@Nugine Nugine merged commit be841d1 into main Apr 26, 2026
7 checks passed
@Nugine Nugine deleted the copilot/fix-ci-failure branch April 26, 2026 15:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

@Nugine Nugine

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Nugine