name: Security
on:
push:
branches: ["main"]
pull_request:
schedule:
- cron: "0 6 * * 1"
permissions:
contents: read
jobs:
audit-and-deny:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v5
- name: Install Rust toolchain
uses: dtolnay/rust-toolchain@stable
- name: Cache cargo
uses: Swatinem/rust-cache@v2
- name: Install cargo-audit and cargo-deny
uses: taiki-e/install-action@v2
with:
tool: cargo-audit,cargo-deny
- name: Cargo audit
run: cargo audit
- name: Cargo deny
run: cargo deny check advisories licenses bans sources