Skip to content

Harden CD with reproducible crate, SBOM, and SLSA provenance#15

Merged
pranamphd merged 7 commits intomainfrom
cd/improve-cd-publish-logic
Jan 13, 2026
Merged

Harden CD with reproducible crate, SBOM, and SLSA provenance#15
pranamphd merged 7 commits intomainfrom
cd/improve-cd-publish-logic

Conversation

@pranamphd
Copy link
Copy Markdown
Owner

@pranamphd pranamphd commented Jan 13, 2026

  • Generate .crate via cargo package prior to publish
  • Verify clean git tree before crates.io publish
  • Upload crate, checksums, and SBOMs as GitHub release assets using gh cli commands

@pranamphd pranamphd self-assigned this Jan 13, 2026
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud bot commented Jan 13, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@pranamphd pranamphd merged commit 7fd442e into main Jan 13, 2026
6 checks passed
@pranamphd pranamphd deleted the cd/improve-cd-publish-logic branch January 13, 2026 09:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@pranamphd pranamphd

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@pranamphd