audit #244
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: audit | |
# This is a separate file so it can have a separate badge in readme | |
# and therefore spread awareness of cargo audit a tiny bit. | |
on: | |
push: | |
branches: [ master ] | |
pull_request: | |
branches: [ master ] | |
schedule: | |
# Runs at 15:00 UTC on Fri | |
- cron: "0 15 * * 5" | |
env: | |
CARGO_TERM_COLOR: always | |
jobs: | |
audit: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
# This is unmaintained but works for now. | |
# Alternatives for when it breaks: | |
# - dtolnay/install - not a full replacement - only supports crates he uses | |
# - baptiste0928/cargo-install - probably just compiles it and then caches it for subsequent runs | |
# - just `cargo install` and caching | |
- uses: actions-rs/[email protected] | |
with: | |
crate: cargo-audit | |
version: latest | |
- run: cargo audit --version | |
# RUSTSEC-2021-0139 - ansi_term is Unmaintained - https://github.com/ogham/rust-ansi-term/issues/72 | |
- run: cargo audit --deny warnings --ignore RUSTSEC-2021-0139 |