From 2999cdc65d99e882bca31a3e0993213912d5e7fc Mon Sep 17 00:00:00 2001 From: Doug Chapman <54039637+dougch@users.noreply.github.com> Date: Tue, 29 Oct 2024 15:54:24 -0700 Subject: [PATCH] chore: add a cargo audit action --- .github/workflows/dependencies.yml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 .github/workflows/dependencies.yml diff --git a/.github/workflows/dependencies.yml b/.github/workflows/dependencies.yml new file mode 100644 index 00000000000..eaff63bef72 --- /dev/null +++ b/.github/workflows/dependencies.yml @@ -0,0 +1,29 @@ +name: dependencies + +on: + # Because of permissions issues with forked PRs, + # Only run on a schedule or pushes to main. + push: + branches: + - main + # Only run if these files were touched. + paths: + - "**/Cargo.toml" + - "**/Cargo.lock" + - ".github/workflows/dependencies.yml" + + schedule: + # Run every day at 1800 UTC. + - cron: "0 18 * * *" + +jobs: + audit: + runs-on: ubuntu-latest + permissions: + issues: write # Open/update issues. + checks: write # Create/update a check run. + steps: + - uses: actions/checkout@v4 + - uses: rustsec/audit-check@v2.0.0 + with: + token: ${{ secrets.GITHUB_TOKEN }}