name: Security audit
on:
schedule:
- cron: '0 0 * * 0'
push:
paths:
- '**/Cargo.toml'
- '**/Cargo.lock'
pull_request:
workflow_dispatch:
jobs:
deny-check:
name: cargo-deny check
runs-on: ubuntu-latest
continue-on-error: ${{ matrix.checks == 'advisories' }}
strategy:
matrix:
checks:
- advisories
- bans licenses sources
steps:
- uses: actions/checkout@v6
- uses: EmbarkStudios/cargo-deny-action@v2
with:
command: check ${{ matrix.checks }}