name: Audit
on:
push:
paths:
- "Cargo.toml"
- "Cargo.lock"
- "deny.toml"
- ".github/workflows/audit.yml"
schedule:
- cron: "0 7 * * 1"
workflow_dispatch:
permissions:
contents: read
jobs:
cargo-audit:
name: cargo-audit
runs-on: ubuntu-latest
permissions:
contents: read
checks: write
issues: write
steps:
- uses: actions/checkout@v6
- uses: rustsec/audit-check@v2.0.0
with:
token: ${{ secrets.GITHUB_TOKEN }}
cargo-deny:
name: cargo-deny
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v6
- uses: EmbarkStudios/cargo-deny-action@v2
with:
command: check
rust-version: stable