feat: APR-MONO spec v2.1 — falsification audit + Phase 2g QA port + 7 PMAT items #2509
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Sovereign CI — calls reusable workflow from paiml/.github | |
| # Change once in paiml/.github → applies to all repos | |
| # | |
| # Jobs provided by sovereign-ci.yml: | |
| # test: cargo test --lib (self-hosted clean-room) | |
| # lint: cargo clippy --all-targets -- -D warnings + cargo fmt --check | |
| # coverage: cargo llvm-cov + codecov upload | |
| # security: cargo audit (ubuntu-latest, continue-on-error) | |
| # provenance: SLSA attest-build-provenance | |
| # gate: aggregates test+lint results | |
| name: CI | |
| on: | |
| push: | |
| branches: [main, master] | |
| pull_request: | |
| branches: [main, master] | |
| workflow_dispatch: | |
| concurrency: | |
| group: ci-${{ github.event.pull_request.number || github.ref }} | |
| cancel-in-progress: true | |
| jobs: | |
| ci: | |
| uses: paiml/.github/.github/workflows/sovereign-ci.yml@main | |
| with: | |
| repo: ${{ github.event.repository.name }} | |
| secrets: inherit | |
| # APR-MONO: Workspace-wide test (all 70 crates) | |
| workspace-test: | |
| runs-on: self-hosted | |
| container: | |
| image: localhost:5000/sovereign-ci:stable | |
| timeout-minutes: 30 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Workspace check (all 70 crates) | |
| run: cargo check --workspace | |
| - name: Workspace lib tests (25,300+) | |
| run: cargo test --workspace --lib --exclude aprender-gpu --exclude aprender-cuda-edge --exclude aprender-cupti --exclude aprender-ptx-debug --exclude aprender-compute --exclude aprender-serve --exclude aprender-explain --exclude apr-cli | |
| timeout-minutes: 25 | |
| - name: Integration tests | |
| run: | | |
| cargo test -p aprender-core --test monorepo_invariants | |
| cargo test -p aprender-core --test readme_contract | |
| cargo test -p apr-cli --test cli_commands | |
| mutants: | |
| runs-on: self-hosted | |
| continue-on-error: true | |
| container: | |
| image: localhost:5000/sovereign-ci:stable | |
| timeout-minutes: 120 | |
| needs: [ci, workspace-test] | |
| if: github.event_name == 'push' && github.ref == 'refs/heads/main' | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install cargo-mutants | |
| run: cargo install cargo-mutants --locked | |
| - name: Run mutation testing | |
| run: cargo mutants --no-times --timeout 300 --in-place -- --lib | |
| continue-on-error: true | |
| - name: Upload mutation results | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: mutation-results | |
| path: mutants.out/ | |