mirror of
https://github.com/ivuorinen/dotfiles.git
synced 2026-02-08 13:46:42 +00:00
Ismo Vuorinen
6d72003446
* fix(ci): replace broad permissions with specific scopes in workflows
Replace read-all/write-all with minimum required permission scopes
across all GitHub Actions workflows to follow the principle of least
privilege (SonarCloud rule githubactions:S8234).
* fix(shell): use [[ instead of [ for conditional tests
Replace single brackets with double brackets in bash conditional
expressions across 14 files (28 changes). All scripts use bash
shebangs so [[ is safe everywhere (SonarCloud rule shelldre:S7688).
* fix(shell): add explicit return statements to functions
Add return 0 as the last statement in ~46 shell functions across
17 files that previously relied on implicit return codes
(SonarCloud rule shelldre:S7682).
* fix(shell): assign positional parameters to local variables
Replace direct $1/$2/$3 usage with named local variables in _log(),
msg(), msg_err(), msg_done(), msg_run(), msg_ok(), and array_diff()
(SonarCloud rule shelldre:S7679).
* fix(python): replace dict() constructor with literal
Use {} instead of dict() for empty dictionary initialization
(SonarCloud rule python:S7498).
* fix(shell): fix husky shebang and tolerate npm outdated exit code
* docs(shell): add function docstring comments
* fix(shell): fix heredoc indentation in x-sonarcloud
* feat(python): add ruff linter and formatter configuration
* fix(ci): align megalinter config with biome, ruff, and shfmt settings
* fix(ci): disable black and yaml-prettier in megalinter config
* chore(ci): update ruff-pre-commit to v0.15.0 and fix hook name
* fix(scripts): check for .git dir before skipping clone in install-fonts
* fix(shell): address code review issues in scripts and shared.sh
- Guard wezterm show-keys failure in create-wezterm-keymaps.sh
- Stop masking git failures with return 0 in install-cheat-purebashbible.sh
- Add missing shared.sh source in install-xcode-cli-tools.sh
- Replace exit 1 with return 1 in sourced shared.sh
* fix(scripts): address code review and security findings
- Guard wezterm show-keys failure in create-wezterm-keymaps.sh
- Stop masking git failures with return 0 in install-cheat-purebashbible.sh
- Add missing shared.sh source in install-xcode-cli-tools.sh
- Replace exit 1 with return 1 in sourced shared.sh
- Remove shell=True subprocess calls in x-git-largest-files.py
* style(shell): apply shfmt formatting and add args to pre-commit hook
* fix(python): suppress bandit false positives in x-git-largest-files
* fix(python): add nosemgrep suppression for check_output call
* feat(format): add prettier for YAML formatting
Install prettier, add .prettierrc.json config (200-char width, 2-space
indent, LF endings), .prettierignore, yarn scripts (lint:prettier,
fix:prettier, format:yaml), and pre-commit hook scoped to YAML files.
* style(yaml): apply prettier formatting
* fix(scripts): address remaining code review findings
- Python: use list comprehension to filter empty strings instead of
slicing off the last element
- create-wezterm-keymaps: write to temp file and mv for atomic updates
- install-xcode-cli-tools: fix shellcheck source directive path
* fix(python): sort imports alphabetically in x-git-largest-files
* fix(lint): disable PYTHON_ISORT in MegaLinter, ruff handles it
* chore(git): add __pycache__ to gitignore
* fix(python): rename ambiguous variable l to line (E741)
* style: remove trailing whitespace and blank lines
* style(fzf): apply shfmt formatting
* style(shell): apply shfmt formatting
* docs(plans): add design documents
* style(docs): add language specifier to fenced code block
* feat(lint): add markdown-table-formatter to dev tooling
Add markdown-table-formatter as a dev dependency with yarn scripts
(lint:md-table, fix:md-table) and a local pre-commit hook to
automatically format markdown tables on commit.
89 lines
2.8 KiB
Bash
Executable File
89 lines
2.8 KiB
Bash
Executable File
#!/usr/bin/env bash
|
|
set -euo pipefail
|
|
# @description Install cargo/rust packages.
|
|
#
|
|
# shellcheck source=shared.sh
|
|
source "$DOTFILES/config/shared.sh"
|
|
|
|
msgr run "Starting to install rust/cargo packages"
|
|
|
|
# Track packages already managed by cargo install-update
|
|
declare -A installed_packages
|
|
|
|
# If we have cargo install-update, use it first
|
|
if command -v cargo-install-update &> /dev/null; then
|
|
msgr run "Updating cargo packages with cargo install-update"
|
|
# Show output in real-time (via stderr) while capturing it for parsing
|
|
update_output=$(cargo install-update -a 2>&1 | tee /dev/stderr)
|
|
msgr run_done "Done with cargo install-update"
|
|
|
|
# Parse installed package names from the update output
|
|
while IFS= read -r pkg_name; do
|
|
[[ -n "$pkg_name" ]] && installed_packages["$pkg_name"]=1
|
|
done < <(echo "$update_output" | awk '/v[0-9]+\.[0-9]+/ { print $1 }')
|
|
fi
|
|
|
|
# Cargo packages to install
|
|
packages=(
|
|
cargo-update # A cargo subcommand for checking and applying updates to installed executables
|
|
cargo-cache # Cargo cache management utility
|
|
tree-sitter-cli # An incremental parsing system for programming tools
|
|
bkt # A subprocess caching utility
|
|
difftastic # A structural diff that understands syntax
|
|
fd-find # A simple, fast and user-friendly alternative to 'find'
|
|
ripgrep # Recursively searches directories for a regex pattern while respecting your gitignore
|
|
bob-nvim # A version manager for neovim
|
|
bottom # A cross-platform graphical process/system monitor
|
|
eza # A modern alternative to ls
|
|
tmux-sessionizer # A tool for opening git repositories as tmux sessions
|
|
zoxide # A smarter cd command
|
|
)
|
|
|
|
# Number of jobs to run in parallel, this helps to keep the system responsive
|
|
BUILD_JOBS=$(nproc --ignore=2 2> /dev/null || sysctl -n hw.ncpu 2> /dev/null || echo 1)
|
|
|
|
# Function to install cargo packages
|
|
install_packages()
|
|
{
|
|
for pkg in "${packages[@]}"; do
|
|
# Skip packages already handled by cargo install-update
|
|
if [[ -n "${installed_packages[$pkg]+x}" ]]; then
|
|
msgr ok "Skipping $pkg (already installed)"
|
|
continue
|
|
fi
|
|
|
|
msgr run "Installing cargo package $pkg"
|
|
cargo install --jobs "$BUILD_JOBS" "$pkg"
|
|
msgr run_done "Done installing $pkg"
|
|
echo ""
|
|
done
|
|
return 0
|
|
}
|
|
|
|
# Function to perform additional steps for installed cargo packages
|
|
post_install_steps()
|
|
{
|
|
msgr run "Now doing the next steps for cargo packages"
|
|
|
|
# use bob to install latest stable nvim
|
|
if command -v bob &> /dev/null; then
|
|
bob use stable && x-path-append "$XDG_DATA_HOME/bob/nvim-bin"
|
|
fi
|
|
|
|
msgr run "Removing cargo cache"
|
|
cargo cache --autoclean
|
|
msgr "done" "Done removing cargo cache"
|
|
return 0
|
|
}
|
|
|
|
# Install cargo packages and run post-install steps
|
|
main()
|
|
{
|
|
install_packages
|
|
msgr "done" "Installed cargo packages!"
|
|
post_install_steps
|
|
return 0
|
|
}
|
|
|
|
main "$@"
|