Skip to content

Audit/centralize exitcodes #14716

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
ordokr wants to merge 5 commits into
base: dev
Choose a base branch
from
Open

Audit/centralize exitcodes #14716

ordokr wants to merge 5 commits into from

Conversation

@ordokr
Copy link

@ordokr ordokr commented Dec 30, 2025
edited
Loading

In response to #64

Summary

  • Adds tauri audit (Rust + JS), outputs: human/json/sarif
  • Deterministic ignore/dedupe/sort; GitHub-friendly SARIF (stable ruleId + artifact locations)
  • Exit code contract (0/1/2/3) enforced consistently
  • Adds tauri build --audit and build.audit config + schema
  • Docs: build.audit example + GitHub Actions SARIF upload + exit-code table

Testing

  • cargo fmt
  • cargo clippy -p tauri-cli --manifest-path crates/tauri-cli/Cargo.toml -- -D warnings
  • cargo test -p tauri-cli --manifest-path crates/tauri-cli/Cargo.toml
  • Manual e2e exit-code checks (policy violation=1, warn=0, exec failure=2, config error=3)
    EOF
    )"

@ordokr
tauri-cli(audit): centralize exit codes and confine audit config parsing
52333d7 
- Centralize audit exit codes and provide mapping comment.
- Confine  parsing to a small helper to avoid serializing full config.
- Replace ad-hoc  usages with  for consistent exit codes.
@ordokr
tauri-cli(config): return error on invalid config schema instead of e…
ed1221f 
…xiting

- Update config loader to return schema validation errors so callers can map to exit code 3.
@ordokr
docs(audit): add build.audit example, SARIF GH actions snippet, and e…
b17f7be 
…xit-code table

- Example  with mode, failOn, ignores, and sarifPath
- GitHub Actions snippet to upload generated SARIF
- Exit-code table for 0/1/2/3
@ordokr
chore(pr): add PR template for tauri-audit changes
1d5e222
@ordokr
tauri-cli(build): add --audit flag and integrate audit during build
5424680 
- Expose `--audit` to run dependency audit as part of `tauri build`
- Honor `build.audit` config to run audit during build when appropriate
- Wire `Audit` command into main CLI
@ordokr ordokr requested a review from a team as a code owner December 30, 2025 01:59
@github-project-automation github-project-automation bot moved this to 📬Proposal in Roadmap Dec 30, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

Roadmap
Status: 📬Proposal

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ordokr