starship/.github/workflows/security-audit.yml

30 lines
675 B
YAML
Raw Normal View History

name: Security audit
on:
pull_request:
paths:
2021-10-25 19:39:09 +02:00
- "**/Cargo.toml"
- "**/Cargo.lock"
push:
paths:
2021-10-25 19:39:09 +02:00
- "**/Cargo.toml"
- "**/Cargo.lock"
jobs:
security_audit:
runs-on: ubuntu-latest
strategy:
matrix:
checks:
- advisories
- bans licenses sources
# Prevent sudden announcement of a new advisory from failing ci:
continue-on-error: ${{ matrix.checks == 'advisories' }}
steps:
2021-10-25 19:39:09 +02:00
- name: Setup | Checkout
uses: actions/checkout@v3
2021-10-25 19:39:09 +02:00
- name: Test | Security Audit
uses: EmbarkStudios/cargo-deny-action@v1.5.1
with:
command: check ${{ matrix.checks }}