diff options
Diffstat (limited to '.github/workflows/audit.yaml')
| -rw-r--r-- | .github/workflows/audit.yaml | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/.github/workflows/audit.yaml b/.github/workflows/audit.yaml new file mode 100644 index 0000000..677ea14 --- /dev/null +++ b/.github/workflows/audit.yaml @@ -0,0 +1,30 @@ +name: audit crates +# this checks our dependencies for +# security advisories every saturday + +on: + schedule: + - cron: "0 0 * * 6" + push: + paths: + - "Cargo.lock" + pull_request: + paths: + - "Cargo.lock" + workflow_dispatch: + +jobs: + audit: + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v3 + + - name: setup nix & cachix + uses: ./.github/actions/setup-nix + with: + cachix-token: ${{ secrets.CACHIX_AUTH_TOKEN }} + + - name: run audit + run: | + nix build -L .#checks.x86_64-linux.audit |