{ inputs = { nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable"; crane = { url = "github:ipetkov/crane"; inputs.nixpkgs.follows = "nixpkgs"; }; fenix = { url = "github:nix-community/fenix"; inputs.nixpkgs.follows = "nixpkgs"; inputs.rust-analyzer-src.follows = ""; }; flake-utils.url = "github:numtide/flake-utils"; rust-overlay = { url = "github:oxalica/rust-overlay"; inputs = { nixpkgs.follows = "nixpkgs"; }; }; advisory-db = { url = "github:rustsec/advisory-db"; flake = false; }; }; outputs = { self, nixpkgs, crane, fenix, flake-utils, advisory-db, rust-overlay, ... }: flake-utils.lib.eachDefaultSystem ( system: let overlays = [ (import rust-overlay) ]; pkgs = (import nixpkgs) { inherit system overlays; }; inherit (pkgs) lib; toolchain = pkgs.rust-bin.fromRustupToolchainFile ./.config/rust-toolchain.toml; craneLib = (crane.mkLib pkgs).overrideToolchain toolchain; src = craneLib.cleanCargoSource (craneLib.path ./.); # Common arguments can be set here to avoid repeating them later commonArgs = { inherit src; strictDeps = true; buildInputs = [ # Add additional build inputs here ] ++ lib.optionals pkgs.stdenv.isDarwin [ # Additional darwin specific inputs can be set here pkgs.libiconv ]; # Additional environment variables can be set directly # MY_CUSTOM_VAR = "some value"; }; craneLibLLvmTools = craneLib.overrideToolchain ( fenix.packages.${system}.complete.withComponents [ "cargo" "llvm-tools" "rustc" ] ); # Build *just* the cargo dependencies, so we can reuse # all of that work (e.g. via cachix) when running in CI cargoArtifacts = craneLib.buildDepsOnly commonArgs; # Build the actual crate itself, reusing the dependency # artifacts from above. unsafe-libyaml = craneLib.buildPackage ( commonArgs // { inherit cargoArtifacts; } ); in { checks = { # Build the crate as part of `nix flake check` for convenience inherit unsafe-libyaml; # Run clippy (and deny all warnings) on the crate source, # again, reusing the dependency artifacts from above. # # Note that this is done as a separate derivation so that # we can block the CI if there are issues here, but not # prevent downstream consumers from building our crate by itself. unsafe-libyaml-clippy = craneLib.cargoClippy ( commonArgs // { inherit cargoArtifacts; cargoClippyExtraArgs = "--all-targets -- --deny warnings -Dclippy::all -Dclippy::pedantic"; } ); unsafe-libyaml-doc = craneLib.cargoDoc ( commonArgs // { inherit cargoArtifacts; } ); # Check formatting unsafe-libyaml-fmt = craneLib.cargoFmt { inherit src; }; # Audit dependencies unsafe-libyaml-audit = craneLib.cargoAudit { inherit src advisory-db; }; # Audit licenses unsafe-libyaml-deny = craneLib.cargoDeny { inherit src; }; # Run tests with cargo-nextest # Consider setting `doCheck = false` on `unsafe-libyaml` if you do not want # the tests to run twice unsafe-libyaml-nextest = craneLib.cargoNextest ( commonArgs // { inherit cargoArtifacts; partitions = 1; partitionType = "count"; } ); }; packages = { default = unsafe-libyaml; } // lib.optionalAttrs (!pkgs.stdenv.isDarwin) { unsafe-libyaml-llvm-coverage = craneLibLLvmTools.cargoLlvmCov ( commonArgs // { inherit cargoArtifacts; } ); }; apps.default = flake-utils.lib.mkApp { drv = unsafe-libyaml; }; devShells.default = craneLib.devShell { # Inherit inputs from checks. checks = self.checks.${system}; # Additional dev-shell environment variables can be set directly # MY_CUSTOM_DEVELOPMENT_VAR = "something else"; # Extra inputs can be added here; cargo and rustc are provided by default. packages = [ pkgs.cargo-outdated pkgs.pkg-config pkgs.openssl ]; }; } ); }