mirror of
https://github.com/ClementTsang/bottom.git
synced 2026-05-04 05:50:42 +00:00
Clement Tsang
fc90c549ef
* ci: update rust-cache to 2.0.1 * ci: update dtolnay/rust-toolchain to ba37adf * ci: update skip-duplicate-actions to v5.2.0 * ci: update ClementTsang/cargo-action to v0.0.3 * ci: update to macos-12 * ci: update ghaction-chocolatey to 2.1.0 * ci: update upload-artifact to v3.1.0 * ci: change from actions-rs to rustsec for audit-check * ci: stop using actions-rs for builds * ci: update cirrus to use tlsv1.2 when curling * ci: disable macOS ARM workflows on GHA since its built on Cirrus
30 lines
995 B
YAML
30 lines
995 B
YAML
# A routine check to see if there are any Rust-specific security vulnerabilities in the repo we should be aware of.
|
|
|
|
name: audit
|
|
on:
|
|
workflow_dispatch:
|
|
schedule:
|
|
- cron: "0 0 * * 1"
|
|
jobs:
|
|
audit:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checkout repository
|
|
uses: actions/checkout@v3
|
|
|
|
- name: Enable Rust cache
|
|
uses: Swatinem/rust-cache@22c9328bcba27aa81a32b1bef27c7e3c78052531 # 2.0.1
|
|
|
|
- name: Set up Rust toolchain
|
|
uses: dtolnay/rust-toolchain@ba37adf8f94a7d9affce79bd3baff1b9e3189c33 # https://github.com/dtolnay/rust-toolchain/commit/ba37adf8f94a7d9affce79bd3baff1b9e3189c33
|
|
with:
|
|
toolchain: stable
|
|
|
|
- name: Install cargo-audit
|
|
run: |
|
|
cargo install cargo-audit --locked
|
|
|
|
- uses: rustsec/audit-check@bb800784d9c5b0afa352b75dae201bf2e438960a # https://github.com/rustsec/audit-check/commit/bb800784d9c5b0afa352b75dae201bf2e438960a
|
|
with:
|
|
token: ${{ secrets.GITHUB_TOKEN }}
|