starship/.github/workflows/security-audit.yml
renovate[bot] 97690bc75f
build(deps): update embarkstudios/cargo-deny-action action to v1.5.5 (#5473)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-10-15 15:35:53 +02:00

30 lines
718 B
YAML

name: Security audit
on:
pull_request:
paths:
- "**/Cargo.toml"
- "**/Cargo.lock"
push:
paths:
- "**/Cargo.toml"
- "**/Cargo.lock"
jobs:
security_audit:
runs-on: ubuntu-latest
strategy:
matrix:
checks:
- advisories
- bans licenses sources
# Prevent sudden announcement of a new advisory from failing ci:
continue-on-error: ${{ matrix.checks == 'advisories' }}
steps:
- name: Setup | Checkout
uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4
- name: Test | Security Audit
uses: EmbarkStudios/cargo-deny-action@v1.5.5
with:
command: check ${{ matrix.checks }}