-
Notifications
You must be signed in to change notification settings - Fork 1
44 lines (39 loc) · 1.3 KB
/
security.yml
File metadata and controls
44 lines (39 loc) · 1.3 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
# =============================================================================
# Security — Weekly cargo audit and cargo deny checks
# =============================================================================
name: Security Audit
on:
schedule:
# Every Monday at 08:00 UTC
- cron: "0 8 * * 1"
# Also allow manual trigger
workflow_dispatch:
env:
CARGO_TERM_COLOR: always
permissions:
issues: write
jobs:
audit:
name: Cargo Audit
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
- uses: dtolnay/rust-toolchain@29eef336d9b2848a0b548edc03f92a220660cdb8 # stable
- name: Install cargo-audit
uses: taiki-e/install-action@cca35edeb1d01366c2843b68fc3ca441446d73d3 # v2
with:
tool: cargo-audit
- name: Run cargo audit
run: cargo audit
deny:
name: Cargo Deny
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
- uses: dtolnay/rust-toolchain@29eef336d9b2848a0b548edc03f92a220660cdb8 # stable
- name: Install cargo-deny
uses: taiki-e/install-action@cca35edeb1d01366c2843b68fc3ca441446d73d3 # v2
with:
tool: cargo-deny
- name: Run cargo deny
run: cargo deny check