Run a full audit on rainix
The previous audit (audit/2026-03-12-01/) is closed — all findings were FIXED, DISMISSED, or made moot by subsequent changes (e.g. rainix-rs-prelude removal in #130).
Since that audit, the surface has shifted significantly:
A fresh audit pass (0–5) at the current HEAD would catch any drift, dead code, or new issues introduced since 2026-03-12.
Scope
flake.nix — biggest delta since the last audit.flake.lock and the input set — verify pinned versions are reasonable, no orphan inputs..github/workflows/ — test.yml, check-shell.yml, soldeer publish (when added), changes since 2026-03-12.prettier-bundle/ — added since the previous audit.test/bats/ — coverage of devshell + tasks; check all paths in flake.nix have a corresponding bats test (sol-shell needs new tests, see follow-up).test/fixture/ — soldeer-migrated; verify the consumer workflow still compiles + runs.
Known follow-ups already filed
These are the candidates for "DISMISS" or "FIXED-IN-FOLLOWUP" markers in the new audit's triage.
Run a full audit on rainix
The previous audit (
audit/2026-03-12-01/) is closed — all findings were FIXED, DISMISSED, or made moot by subsequent changes (e.g.rainix-rs-preluderemoval in #130).Since that audit, the surface has shifted significantly:
sol-shelladded, layeredsol-build-inputs/sol-tasks/rs-tasks/rainix-tasks/common-shell-inputsintroduced,sol-preludeandrs-preluderemoved (feat: add sol-shell devShell, drop sol-prelude and rs-prelude #130).prettier-bundleintroduced.chromiumcross-platform wrapper added (add chromium to dev shell #122).ageadded to default shell.nixpkgs-oldinput still pinned for tauri (proposed for removal in Remove tauri-shell devShell and tauri-build-inputs #129).goldsky,the-graph, foundry pinning.A fresh audit pass (0–5) at the current HEAD would catch any drift, dead code, or new issues introduced since 2026-03-12.
Scope
flake.nix— biggest delta since the last audit.flake.lockand the input set — verify pinned versions are reasonable, no orphan inputs..github/workflows/— test.yml, check-shell.yml, soldeer publish (when added), changes since 2026-03-12.prettier-bundle/— added since the previous audit.test/bats/— coverage of devshell + tasks; check all paths in flake.nix have a corresponding bats test (sol-shell needs new tests, see follow-up).test/fixture/— soldeer-migrated; verify the consumer workflow still compiles + runs.Known follow-ups already filed
.vscode/necessity.These are the candidates for "DISMISS" or "FIXED-IN-FOLLOWUP" markers in the new audit's triage.