diff options
Diffstat (limited to '.github/workflows/audit.yml')
| -rw-r--r-- | .github/workflows/audit.yml | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml new file mode 100644 index 0000000..b943e5d --- /dev/null +++ b/.github/workflows/audit.yml @@ -0,0 +1,29 @@ +name: Security Audit + +on: + push: + branches: + - master + paths: + - "**/Cargo.toml" + schedule: + - cron: "0 2 * * *" # run at 2 AM UTC + +permissions: + contents: read + +jobs: + security-audit: + permissions: + checks: write # for rustsec/audit-check to create check + contents: read # for actions/checkout to fetch code + issues: write # for rustsec/audit-check to create issues + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + + - name: Audit Check + # https://github.com/rustsec/audit-check/issues/2 + uses: rustsec/audit-check@master + with: + token: ${{ secrets.GITHUB_TOKEN }} |