Synchronize IDs (2026-02-14) #1325
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Export to OSV format | |
| on: | |
| push: | |
| branches: main | |
| permissions: {} | |
| jobs: | |
| publish-web: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: write # needed for pushing back to the repo | |
| steps: | |
| - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| with: | |
| ref: osv | |
| persist-credentials: true # persists the token for git push below | |
| - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 | |
| id: admin-cache | |
| with: | |
| path: ~/.cargo/bin | |
| key: rustsec-admin-fd0658040d06dff9569dd7b2df60439db93403ec | |
| - name: Install rustsec-admin | |
| if: steps.admin-cache.outputs.cache-hit != 'true' | |
| run: cargo install --git https://github.com/rustsec/rustsec rustsec-admin --rev fd0658040d06dff9569dd7b2df60439db93403ec | |
| - run: | | |
| mkdir -p crates | |
| rustsec-admin osv crates | |
| # FIXME: hack to avoid committing advisories without an ID | |
| rm -f crates/RUSTSEC-0000-0000.json | |
| git config user.name github-actions | |
| git config user.email github-actions@github.com | |
| git add . | |
| git commit -m "Update OSV exported data" || true | |
| git push || true |