From ed8b784c78b759a59dbb0232e04d00604a611699 Mon Sep 17 00:00:00 2001
From: seth <getchoo@tuta.io>
Date: Tue, 30 May 2023 19:44:41 -0400
Subject: ci: don't use unmaintained actions

---
 .github/workflows/audit.yaml | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)
 create mode 100644 .github/workflows/audit.yaml

(limited to '.github/workflows/audit.yaml')

diff --git a/.github/workflows/audit.yaml b/.github/workflows/audit.yaml
new file mode 100644
index 0000000..677ea14
--- /dev/null
+++ b/.github/workflows/audit.yaml
@@ -0,0 +1,30 @@
+name: audit crates
+# this checks our dependencies for
+# security advisories every saturday
+
+on:
+  schedule:
+    - cron: "0 0 * * 6"
+  push:
+    paths:
+      - "Cargo.lock"
+  pull_request:
+    paths:
+      - "Cargo.lock"
+  workflow_dispatch:
+
+jobs:
+  audit:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: setup nix & cachix
+        uses: ./.github/actions/setup-nix
+        with:
+          cachix-token: ${{ secrets.CACHIX_AUTH_TOKEN }}
+
+      - name: run audit
+        run: |
+          nix build -L .#checks.x86_64-linux.audit
-- 
cgit v1.2.3