mirror of
https://github.com/lightningdevkit/rust-lightning.git
synced 2025-02-25 15:20:24 +01:00
fd705c7919
In order to continuously monitor our dependencies for security vulnerabilities, we introduce a new CI job that will use `cargo audit` to check for any known vulnerabilities. This job is run on a daily schedule. For each new advisory, a new issue will be created.
17 lines
327 B
YAML
17 lines
327 B
YAML
name: Security Audit
|
|
on:
|
|
workflow_dispatch:
|
|
schedule:
|
|
- cron: '0 0 * * *'
|
|
|
|
jobs:
|
|
audit:
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
issues: write
|
|
checks: write
|
|
steps:
|
|
- uses: actions/checkout@v3
|
|
- uses: rustsec/audit-check@v1.4.1
|
|
with:
|
|
token: ${{ secrets.GITHUB_TOKEN }}
|