starship/.github/workflows/security-audit.yml
renovate[bot] cf361444d9
build(deps): update embarkstudios/cargo-deny-action action to v2 (#6161)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-05 20:00:10 +02:00

30 lines
675 B
YAML

name: Security audit
on:
pull_request:
paths:
- "**/Cargo.toml"
- "**/Cargo.lock"
push:
paths:
- "**/Cargo.toml"
- "**/Cargo.lock"
jobs:
security_audit:
runs-on: ubuntu-latest
strategy:
matrix:
checks:
- advisories
- bans licenses sources
# Prevent sudden announcement of a new advisory from failing ci:
continue-on-error: ${{ matrix.checks == 'advisories' }}
steps:
- name: Setup | Checkout
uses: actions/checkout@v4
- name: Test | Security Audit
uses: EmbarkStudios/cargo-deny-action@v2.0.1
with:
command: check ${{ matrix.checks }}