Run #69 task 146 failed with:
ERROR cargo_tarpaulin: Failed to run tests:
ASLR disable failed: EPERM: Operation not permitted
cargo-tarpaulin relies on ptrace to disable ASLR for code-coverage
instrumentation, but the Docker container the Forgejo act runner
spawns for each job doesn't carry CAP_SYS_PTRACE. Two fixes possible:
1. Set `container.privileged: true` in /root/.runner.yaml to grant
ptrace (wide capability, affects all jobs)
2. Switch to `cargo llvm-cov` which uses source-based coverage
instead of runtime instrumentation
Neither is the scope of "unblock CI today". Drop the coverage step
and its threshold gate from ci.yml. Coverage can run in a dedicated
nightly job once we pick option 1 or 2.
Saves ~7 min per Rust-touching run on cold cache (5 min tarpaulin
install + 2 min run attempt).
853ee7fc72