forked from tw93/Kaku
-
Notifications
You must be signed in to change notification settings - Fork 0
37 lines (32 loc) · 934 Bytes
/
Copy pathaudit.yml
File metadata and controls
37 lines (32 loc) · 934 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
name: Security Audit
# Weekly cargo-audit run over Cargo.lock. Reports RustSec advisories that
# affect any transitive dependency in the workspace. Not a PR gate; the action
# opens/updates a dedicated issue when new advisories appear so triage stays
# visible without blocking everyday merges.
on:
schedule:
# Mondays at 06:00 UTC.
- cron: '0 6 * * 1'
push:
branches:
- main
paths:
- '**/Cargo.toml'
- '**/Cargo.lock'
- '.github/workflows/audit.yml'
workflow_dispatch:
permissions:
contents: read
issues: write
checks: write
jobs:
audit:
name: cargo audit
runs-on: macos-latest
steps:
- name: Checkout
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
- name: Run cargo audit
uses: rustsec/audit-check@69366f33c96575abad1ee0dba8212993eecbe998 # v2.0.0
with:
token: ${{ secrets.GITHUB_TOKEN }}