Skip to content

Merge pull request #421 from sigstore/dependabot/cargo/cached-0.54 #46

Merge pull request #421 from sigstore/dependabot/cargo/cached-0.54

Merge pull request #421 from sigstore/dependabot/cargo/cached-0.54 #46

name: Security audit
on:
schedule:
- cron: "0 0 * * *"
push:
paths:
- "**/Cargo.toml"
- "**/Cargo.lock"
# Declare default permissions as read only.
permissions: read-all
jobs:
audit:
permissions:
checks: write # for rustsec/audit-check to create check
contents: read # for actions/checkout to fetch code
issues: write # for rustsec/audit-check to create issues
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Generate lockfile
run: cargo generate-lockfile
- uses: rustsec/audit-check@69366f33c96575abad1ee0dba8212993eecbe998 # v2.0.0
with:
token: ${{ secrets.GITHUB_TOKEN }}