name: Security Audit
on:
pull_request:
paths:
- '.github/workflows/security.yml'
- '**/Cargo.toml'
- '**/Cargo.lock'
push:
branches: [master, dev]
schedule:
- cron: '0 6 * * 1'
jobs:
audit:
name: cargo audit
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Install cargo-audit
uses: dtolnay/rust-toolchain@stable
- name: Run cargo audit
run: cargo install cargo-audit && cargo audit
deny:
name: cargo deny
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Install cargo-deny
run: cargo install cargo-deny
- name: Run cargo deny
run: cargo deny check