name: Security Audit
on:
schedule: # Every Monday
push:
branches:
paths:
- 'Cargo.toml'
- 'Cargo.lock'
- '.github/workflows/audit.yml'
permissions:
contents: read
checks: write
jobs:
audit:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: rustsec/audit-check@v2
with:
token: ${{ secrets.GITHUB_TOKEN }}