chore: prepare release → 1.0.0-alpha11 (#1175)

* chore: prepare release → `1.0.0-alpha11` Signed-off-by: Sam Gammon <[email protected]> * fix: static jna conditional on macos Signed-off-by: Sam Gammon <[email protected]> * fix: update boringssl and drop flag overrides on linux Signed-off-by: Sam Gammon <[email protected]> * chore: lib publishing process for `sqlite` Signed-off-by: Sam Gammon <[email protected]> * chore: cleanup/release prep after kotlin upgrade Signed-off-by: Sam Gammon <[email protected]> * chore: verification fixes Signed-off-by: Sam Gammon <[email protected]> * fix: large runner mappings for cli release jobs Signed-off-by: Sam Gammon <[email protected]> * fix: version of pnpm during cli release in ci Signed-off-by: Sam Gammon <[email protected]> * fix: cli release args for gradle in ci Signed-off-by: Sam Gammon <[email protected]> * fix: fuck you gradle Signed-off-by: Sam Gammon <[email protected]> * fix: fuck you gradle Signed-off-by: Sam Gammon <[email protected]> * chore: fmt Signed-off-by: Sam Gammon <[email protected]> * fix: sqlite native symbols and transitive library load Signed-off-by: Sam Gammon <[email protected]> * chore: cleanup for node os module Signed-off-by: Sam Gammon <[email protected]> * fix: native crashes with release-mode crates Signed-off-by: Sam Gammon <[email protected]> * fix: invalid `mitata` import for js bench Signed-off-by: Sam Gammon <[email protected]> * fix: missing `mitata` deps Signed-off-by: Sam Gammon <[email protected]> * chore: disable vsc netbeans integration Signed-off-by: Sam Gammon <[email protected]> * fix: optimization despite debug symbols Signed-off-by: Sam Gammon <[email protected]> * chore: upgrade kotlin compile testing Signed-off-by: Sam Gammon <[email protected]> * chore: re-seal pnpm deps Signed-off-by: Sam Gammon <[email protected]> * chore: `pnpm update -r --latest` Signed-off-by: Sam Gammon <[email protected]> * chore: `pnpm dedupe` Signed-off-by: Sam Gammon <[email protected]> * fix: avoid linking with system `sqlite3` Signed-off-by: Sam Gammon <[email protected]> * fix: native transport symbol visibility Signed-off-by: Sam Gammon <[email protected]> * fixup!: sqlite pt 1 Signed-off-by: Sam Gammon <[email protected]> * fixup!: sqlite pt 2 Signed-off-by: Sam Gammon <[email protected]> * chore: fmt Signed-off-by: Sam Gammon <[email protected]> * fix: re-enable g1 / oracle gvm target Signed-off-by: Sam Gammon <[email protected]> * fix: general fixes for espresso and kotlin Signed-off-by: Sam Gammon <[email protected]> * fix: deprecated native flags, g1 incompatibility with aux cache Signed-off-by: Sam Gammon <[email protected]> * fix: missing reflection configs for vfs file fingerprints Signed-off-by: Sam Gammon <[email protected]> * chore: sample scripts for java/kt Signed-off-by: Sam Gammon <[email protected]> * chore: initial (early) wiring for deferred execution and on-the-fly compiled sources Signed-off-by: Sam Gammon <[email protected]> * chore: cargo fmt Signed-off-by: Sam Gammon <[email protected]> * chore: detekt baseline updates Signed-off-by: Sam Gammon <[email protected]> * chore: sqlite bench scripts Signed-off-by: Sam Gammon <[email protected]> * fix: sqlite driver in native mode Signed-off-by: Sam Gammon <[email protected]> * chore: fmt Signed-off-by: Sam Gammon <[email protected]> * fix: restore kotlin/jvm support Signed-off-by: Sam Gammon <[email protected]> * fix: llvm and sqlite cohabitating with init-at-runtime as default Signed-off-by: Sam Gammon <[email protected]> * chore: fmt Signed-off-by: Sam Gammon <[email protected]> * fix: issues with pkl native build, match clikt/gvm other deps Signed-off-by: Sam Gammon <[email protected]> * chore: updates to verification metadata Signed-off-by: Sam Gammon <[email protected]> * chore: further work on hakuna (benchmark tooling) Signed-off-by: Sam Gammon <[email protected]> * fix: language resolution issues with python via cli Signed-off-by: Sam Gammon <[email protected]> * fix: re-enable preinit Signed-off-by: Sam Gammon <[email protected]> * fix: native macos build for cli Signed-off-by: Sam Gammon <[email protected]> * fix(ci): missing bun setup step Signed-off-by: Sam Gammon <[email protected]> * test: better cli entrypoint tests Signed-off-by: Sam Gammon <[email protected]> * fix: map latest gvm release version Signed-off-by: Sam Gammon <[email protected]> * chore: fmt Signed-off-by: Sam Gammon <[email protected]> * fix: build against rust stable Signed-off-by: Sam Gammon <[email protected]> * chore: rust fmt Signed-off-by: Sam Gammon <[email protected]> * chore: cargo relock Signed-off-by: Sam Gammon <[email protected]> * chore: lint fixes Signed-off-by: Sam Gammon <[email protected]> * chore: update oro package lock Signed-off-by: Sam Gammon <[email protected]> * fix: cargo fmt Signed-off-by: Sam Gammon <[email protected]> * chore: update container bases and issue image releases Signed-off-by: Sam Gammon <[email protected]> * chore: update gradle to latest release Signed-off-by: Sam Gammon <[email protected]> * chore(deps): Bump actions-rust-lang/setup-rust-toolchain Bumps [actions-rust-lang/setup-rust-toolchain](https://github.com/actions-rust-lang/setup-rust-toolchain) from 1.9.0 to 1.10.1. - [Release notes](https://github.com/actions-rust-lang/setup-rust-toolchain/releases) - [Changelog](https://github.com/actions-rust-lang/setup-rust-toolchain/blob/main/CHANGELOG.md) - [Commits](actions-rust-lang/setup-rust-toolchain@1fbea72...11df97a) --- updated-dependencies: - dependency-name: actions-rust-lang/setup-rust-toolchain dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Sam Gammon <[email protected]> * chore(deps): Bump actions/checkout from 4.1.7 to 4.2.2 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.7 to 4.2.2. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@692973e...11bd719) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Sam Gammon <[email protected]> * chore(deps): Bump google-github-actions/auth from 2.1.2 to 2.1.7 Bumps [google-github-actions/auth](https://github.com/google-github-actions/auth) from 2.1.2 to 2.1.7. - [Release notes](https://github.com/google-github-actions/auth/releases) - [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md) - [Commits](google-github-actions/auth@55bd3a7...6fc4af4) --- updated-dependencies: - dependency-name: google-github-actions/auth dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Sam Gammon <[email protected]> * chore(deps): Bump step-security/harden-runner from 2.9.0 to 2.10.4 Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.9.0 to 2.10.4. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@0d38121...cb605e5) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Sam Gammon <[email protected]> * chore(deps): Bump docker/setup-buildx-action from 3.5.0 to 3.8.0 Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.5.0 to 3.8.0. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@aa33708...6524bf6) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Sam Gammon <[email protected]> * chore: `pnpm update -r --latest` Signed-off-by: Sam Gammon <[email protected]> * chore: `pnpm dedupe` Signed-off-by: Sam Gammon <[email protected]> * chore: `cargo update` Signed-off-by: Sam Gammon <[email protected]> * fix: gate allocator to fix alloc bug with tool interop Signed-off-by: Sam Gammon <[email protected]> * test: entrypoint tests for rb execution Signed-off-by: Sam Gammon <[email protected]> * fix: v8 compat/timer resolution (bench fixes) Signed-off-by: Sam Gammon <[email protected]> * chore: use jvm23 bytecode target for cli Signed-off-by: Sam Gammon <[email protected]> * fix: native tooling dispatch Signed-off-by: Sam Gammon <[email protected]> * fix: nullability of loggers Signed-off-by: Sam Gammon <[email protected]> * fix: general fixes for `embedded` package Signed-off-by: Sam Gammon <[email protected]> * fix: module import for sqlite bench Signed-off-by: Sam Gammon <[email protected]> * fix: macos minimums, pt 1 Signed-off-by: Sam Gammon <[email protected]> * chore: fmt (prettier) Signed-off-by: Sam Gammon <[email protected]> * chore: fmt (biome) Signed-off-by: Sam Gammon <[email protected]> --------- Signed-off-by: Sam Gammon <[email protected]> Signed-off-by: Sam Gammon <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
elide-dev · Jan 27, 2025 · 8553695 · 8553695
1 parent 9b2568e
commit 8553695
Show file tree

Hide file tree

Showing 166 changed files with 3,739 additions and 2,277 deletions.
diff --git a/.bun-version b/.bun-version
@@ -0,0 +1 @@
+1.2.0
diff --git a/.cargo/config.toml b/.cargo/config.toml
@@ -14,8 +14,8 @@
 [build]
 rustflags = [
   # Enable Tokio unstable.
-  "--cfg",
-  "tokio_unstable",
+  # "--cfg",
+  # "tokio_unstable",
 
   # Enforce completely position-independent executables.
   "-Crelocation-model=pic",

diff --git a/.devcontainer/Dockerfile b/.devcontainer/Dockerfile
@@ -5,7 +5,7 @@ FROM mcr.microsoft.com/devcontainers/base:ubuntu-24.04
 LABEL org.opencontainers.image.vendor=Elide
 LABEL org.opencontainers.image.title="Elide Codespace"
 LABEL org.opencontainers.image.description="Elide runtime within a GitHub Codespace"
-LABEL org.opencontainers.image.version=1.0.0-alpha10
+LABEL org.opencontainers.image.version=1.0.0-alpha11
 LABEL org.opencontainers.image.url=https://github.com/elide-dev/elide
 LABEL org.opencontainers.image.base.name=mcr.microsoft.com/devcontainers/base
 LABEL org.opencontainers.image.source=https://github.com/elide-dev/elide/blob/main/.devcontainer/Elide.devcontainer

diff --git a/.github/CONTRIBUTING.md b/.github/CONTRIBUTING.md
@@ -172,13 +172,13 @@ Check the `gradle.properties` file at the project root to see all available opti
 If you are building a JVM application that runs guest code in one of the languages supported by Elide, you can use the Runtime DSL to configure your own embedded polyglot engine:
 
 ```kotlin
-implementation("dev.elide:elide-graalvm:1.0.0-alpha10")
+implementation("dev.elide:elide-graalvm:1.0.0-alpha11")
 ```
 
 or for Groovy scripts:
 
 ```groovy
-implementation 'dev.elide:elide-graalvm:1.0.0-alpha10'
+implementation 'dev.elide:elide-graalvm:1.0.0-alpha11'
 ```
 
 The DSL is used internally by the Elide binaries and by the SSR packages and provides a simplified API to harness the power of the underlying [GraalVM](https://graalvm.org) engine:

diff --git a/.github/workflows/checks.apicheck.yml b/.github/workflows/checks.apicheck.yml
@@ -61,7 +61,7 @@ jobs:
     continue-on-error: true
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: audit
@@ -83,7 +83,7 @@ jobs:
             dl.google.com:443
             repo.maven.apache.org:443
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
           persist-credentials: false

diff --git a/.github/workflows/checks.clippy.yml b/.github/workflows/checks.clippy.yml
@@ -33,16 +33,16 @@ jobs:
       contents: read
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: audit
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false
       - name: "Setup: Rust"
-        uses: actions-rust-lang/setup-rust-toolchain@1fbea72663f6d4c03efaab13560c8a24cfd2a7cc # v1.9.0
+        uses: actions-rust-lang/setup-rust-toolchain@11df97af8e8102fd60b60a77dfbf58d40cd843b8 # v1.10.1
         with:
           toolchain: nightly
           components: clippy,rustfmt

diff --git a/.github/workflows/checks.codeql.yml b/.github/workflows/checks.codeql.yml
@@ -57,7 +57,7 @@ jobs:
         language: ["javascript-typescript"]
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: audit
@@ -76,7 +76,7 @@ jobs:
             maven.pkg.st:443
             objects.githubusercontent.com:443
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false
       - name: "Setup: Cache Restore (Test)"

diff --git a/.github/workflows/checks.dependency-review.yml b/.github/workflows/checks.dependency-review.yml
@@ -26,7 +26,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: block
@@ -36,7 +36,7 @@ jobs:
             api.securityscorecards.dev:443
             github.com:443
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
           persist-credentials: false

diff --git a/.github/workflows/checks.detekt.yml b/.github/workflows/checks.detekt.yml
@@ -49,7 +49,7 @@ jobs:
     continue-on-error: true
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: audit
@@ -64,7 +64,7 @@ jobs:
             maven.pkg.st:443
             dl.less.build:443
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
           persist-credentials: false

diff --git a/.github/workflows/checks.formatting.yml b/.github/workflows/checks.formatting.yml
@@ -61,7 +61,7 @@ jobs:
     continue-on-error: true
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: audit
@@ -79,15 +79,19 @@ jobs:
             registry.npmjs.org:443
             repo.maven.apache.org:443
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
           persist-credentials: false
       - name: "Setup: Node"
         uses: actions/setup-node@1e60f620b9541d16bece96c5465dc8ee9832be0b # v4.0.3
         with:
           node-version: 22
-      - name: "Setup: GraalVM (Java 22)"
+      - name: "Setup: Bun"
+        uses: oven-sh/setup-bun@4bc047ad259df6fc24a6c9b0f9a0cb08cf17fbe5 # v2.0.1
+        with:
+          bun-version-file: .bun-version
+      - name: "Setup: GraalVM (Java 23)"
         uses: graalvm/setup-graalvm@2911b2304bee2c2f59b9a67bf45f025a6b6de4b1 # v1.2.2
         with:
           distribution: "graalvm"
@@ -103,7 +107,7 @@ jobs:
       - name: "Setup: Yarn"
         run: pnpm install -g [email protected]
       - name: "Setup: Rust"
-        uses: actions-rust-lang/setup-rust-toolchain@1fbea72663f6d4c03efaab13560c8a24cfd2a7cc # v1.9.0
+        uses: actions-rust-lang/setup-rust-toolchain@11df97af8e8102fd60b60a77dfbf58d40cd843b8 # v1.10.1
         with:
           toolchain: nightly
           components: clippy,rustfmt

diff --git a/.github/workflows/checks.gradle-wrapper.yml b/.github/workflows/checks.gradle-wrapper.yml
@@ -26,7 +26,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: block
@@ -35,7 +35,7 @@ jobs:
             github.com:443
             services.gradle.org:443
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
           persist-credentials: false

diff --git a/.github/workflows/checks.model.yml b/.github/workflows/checks.model.yml
@@ -82,7 +82,7 @@ jobs:
       contents: "read"
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: block
@@ -92,7 +92,7 @@ jobs:
             github.com:443
             objects.githubusercontent.com:443
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
           persist-credentials: false
@@ -120,7 +120,7 @@ jobs:
     continue-on-error: ${{ contains(github.event.pull_request.labels.*.name, 'ci:buf-breaking-ignore') }}
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: block
@@ -130,7 +130,7 @@ jobs:
             github.com:443
             objects.githubusercontent.com:443
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false
       - name: "Setup: Buf"

diff --git a/.github/workflows/checks.qodana.yml b/.github/workflows/checks.qodana.yml
@@ -52,11 +52,11 @@ jobs:
     continue-on-error: true
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           egress-policy: audit
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false
       - name: "Setup: GraalVM (Java 22)"

diff --git a/.github/workflows/checks.rustfmt.yml b/.github/workflows/checks.rustfmt.yml
@@ -31,16 +31,16 @@ jobs:
       security-events: write
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: true
           egress-policy: audit
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false
       - name: "Setup: Rust"
-        uses: actions-rust-lang/setup-rust-toolchain@1fbea72663f6d4c03efaab13560c8a24cfd2a7cc # v1.9.0
+        uses: actions-rust-lang/setup-rust-toolchain@11df97af8e8102fd60b60a77dfbf58d40cd843b8 # v1.10.1
         with:
           toolchain: nightly
           components: clippy,rustfmt

diff --git a/.github/workflows/checks.scorecards.yml b/.github/workflows/checks.scorecards.yml
@@ -35,11 +35,11 @@ jobs:
 
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           egress-policy: audit
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false
       - name: "Analysis: Scorecard"

diff --git a/.github/workflows/checks.sonar.yml b/.github/workflows/checks.sonar.yml
@@ -52,11 +52,11 @@ jobs:
     continue-on-error: true
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           egress-policy: audit
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
           persist-credentials: false

diff --git a/.github/workflows/job.bench.yml b/.github/workflows/job.bench.yml
@@ -67,11 +67,11 @@ jobs:
 
     steps:
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           egress-policy: audit
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false
           fetch-depth: 0

diff --git a/.github/workflows/job.build.yml b/.github/workflows/job.build.yml
@@ -194,7 +194,7 @@ jobs:
       - name: "Setup: Apt Dependencies"
         run: sudo apt-get install -y libtool-bin build-essential libc6-dev
       - name: "Setup: Harden Runner"
-        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
+        uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
         with:
           disable-sudo: false
           egress-policy: audit
@@ -233,13 +233,13 @@ jobs:
       - name: "Setup: Clear Tooling Cache"
         run: rm -rf /opt/hostedtoolcache
       - name: "Setup: Checkout"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           submodules: true
           persist-credentials: false
           token: ${{ secrets.GITHUB_TOKEN }}
       - name: "Setup: Rust"
-        uses: actions-rust-lang/setup-rust-toolchain@1fbea72663f6d4c03efaab13560c8a24cfd2a7cc # v1.9.0
+        uses: actions-rust-lang/setup-rust-toolchain@11df97af8e8102fd60b60a77dfbf58d40cd843b8 # v1.10.1
         with:
           toolchain: nightly
           components: clippy,rustfmt
@@ -250,7 +250,7 @@ jobs:
         run: |
           echo "SCCACHE_GHA_ENABLED=true" >> $GITHUB_ENV
           echo "RUSTC_WRAPPER=sccache" >> $GITHUB_ENV
-      - name: "Setup: GraalVM (Java 22)"
+      - name: "Setup: GraalVM (Java 23)"
         uses: graalvm/setup-graalvm@2911b2304bee2c2f59b9a67bf45f025a6b6de4b1 # v1.2.2
         with:
           distribution: "graalvm"
@@ -267,6 +267,10 @@ jobs:
         uses: actions/setup-node@1e60f620b9541d16bece96c5465dc8ee9832be0b # v4.0.3
         with:
           node-version: 22
+      - name: "Setup: Bun"
+        uses: oven-sh/setup-bun@4bc047ad259df6fc24a6c9b0f9a0cb08cf17fbe5 # v2.0.1
+        with:
+          bun-version-file: .bun-version
       - name: "Setup: PNPM"
         uses: pnpm/action-setup@fe02b34f77f8bc703788d5817da081398fad5dd2 # v4.0.0
         with: