Update swift-build v1.5.4

[leogdion]

No description provided.

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: a9fc6468-a624-4c92-8653-fca400af8513

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch swift-build-1.5.4

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[claude]

Code Review

Summary: This PR updates brightdigit/swift-build, but the title says v1.5.4 while every changed line pins to @main (a mutable branch ref) instead of @v1.5.4.

Security concern — mutable ref: Pinning to @main means the action can change at any commit without a PR or audit trail here. A broken or compromised upstream push would immediately affect all CI runs. GitHub's supply-chain hardening guidance recommends pinning to a version tag or commit SHA.

Recommendation: Replace all @main with @v1.5.4 (or the corresponding commit SHA for strongest protection).

Verdict: Needs changes before merging.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 78.55%. Comparing base (2862d16) to head (f815f12).

Additional details and impacted files

@@            Coverage Diff             @@
##           v0.0.4     #142      +/-   ##
==========================================
+ Coverage   77.87%   78.55%   +0.68%     
==========================================
  Files         126      126              
  Lines        4555     4555              
==========================================
+ Hits         3547     3578      +31     
+ Misses       1008      977      -31     

Flag	Coverage Δ
spm	77.87% <ø> (+0.02%)	⬆️
swift-6.0	78.33% <ø> (?)
swift-6.1	78.02% <ø> (?)
swift-6.2	77.91% <ø> (?)
swift-6.3	78.09% <ø> (+0.21%)	⬆️
ubuntu	78.55% <ø> (+0.68%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[claude]

PR 142 Code Review - Update swift-build v1.5.4

Security concern - Unpinned action version: Switching from @v1.5.3 to @v1 uses a floating major tag. This tag can be silently force-pushed to a different commit, introducing unreviewed behavior changes or a compromised build. Best practice is to pin to the explicit release: brightdigit/swift-build@v1.5.4.

Empty PR description: No context is provided on what changed in v1.5.4 or why the floating tag was chosen. A link to the swift-build changelog would help reviewers.

Suggestion: Use brightdigit/swift-build@v1.5.4 so upgrades are deliberate and auditable.