-
Notifications
You must be signed in to change notification settings - Fork 4
34 lines (30 loc) · 1.02 KB
/
audit.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
name: audit
# This is a separate file so it can have a separate badge in readme
# and therefore spread awareness of cargo audit a tiny bit.
on:
push:
branches: [ master ]
pull_request:
branches: [ master ]
schedule:
# Runs at 15:00 UTC on Fri
- cron: "0 15 * * 5"
env:
CARGO_TERM_COLOR: always
jobs:
audit:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
# This is unmaintained but works for now.
# Alternatives for when it breaks:
# - dtolnay/install - not a full replacement - only supports crates he uses
# - baptiste0928/cargo-install - probably just compiles it and then caches it for subsequent runs
# - just `cargo install` and caching
- uses: actions-rs/[email protected]
with:
crate: cargo-audit
version: latest
- run: cargo audit --version
# RUSTSEC-2021-0139 - ansi_term is Unmaintained - https://github.com/ogham/rust-ansi-term/issues/72
- run: cargo audit --deny warnings --ignore RUSTSEC-2021-0139