From 1f687b00875716062b73c4c7197d777542994f9f Mon Sep 17 00:00:00 2001 From: "octo-sts[bot]" <157150467+octo-sts@users.noreply.github.com> Date: Tue, 12 Aug 2025 08:29:58 +0000 Subject: [PATCH 1/2] buck2/20250401-r2: fix GHSA-qx2v-8332-m4fv --- buck2.yaml | 4 +++- buck2/cargobump-deps.yaml | 3 +++ 2 files changed, 6 insertions(+), 1 deletion(-) create mode 100644 buck2/cargobump-deps.yaml diff --git a/buck2.yaml b/buck2.yaml index 84aaa5286cf..762fbb6a571 100644 --- a/buck2.yaml +++ b/buck2.yaml @@ -1,7 +1,7 @@ package: name: buck2 version: 20250401 - epoch: 2 + epoch: 3 # GHSA-qx2v-8332-m4fv description: "Build system, successor to Buck" copyright: - license: MIT @@ -38,6 +38,8 @@ pipeline: # read upstream's rust-toolchain file to install the right one rustup install + - uses: rust/cargobump + - name: Configure and build runs: | # Include our nightly Rust bin/ directory in PATH diff --git a/buck2/cargobump-deps.yaml b/buck2/cargobump-deps.yaml new file mode 100644 index 00000000000..b9c27773f92 --- /dev/null +++ b/buck2/cargobump-deps.yaml @@ -0,0 +1,3 @@ +packages: + - name: slab + version: 0.4.11 From a7eaaf4dd0bdc9bd2b924dfbe818a87245e8de27 Mon Sep 17 00:00:00 2001 From: David Negreira Date: Thu, 14 Aug 2025 10:47:32 +0200 Subject: [PATCH 2/2] buck2: remove cargobump Signed-off-by: David Negreira --- buck2.yaml | 2 -- buck2/cargobump-deps.yaml | 3 --- 2 files changed, 5 deletions(-) delete mode 100644 buck2/cargobump-deps.yaml diff --git a/buck2.yaml b/buck2.yaml index 762fbb6a571..e6a3e8d29e3 100644 --- a/buck2.yaml +++ b/buck2.yaml @@ -38,8 +38,6 @@ pipeline: # read upstream's rust-toolchain file to install the right one rustup install - - uses: rust/cargobump - - name: Configure and build runs: | # Include our nightly Rust bin/ directory in PATH diff --git a/buck2/cargobump-deps.yaml b/buck2/cargobump-deps.yaml deleted file mode 100644 index b9c27773f92..00000000000 --- a/buck2/cargobump-deps.yaml +++ /dev/null @@ -1,3 +0,0 @@ -packages: - - name: slab - version: 0.4.11