mirror of
https://github.com/samsonjs/agate.git
synced 2026-03-25 09:05:50 +00:00
e33c45fb99
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
19 lines
587 B
YAML
19 lines
587 B
YAML
name: Cargo Audit Scanning
|
|
on:
|
|
push:
|
|
paths:
|
|
- "**/Cargo.toml"
|
|
- "**/Cargo.lock"
|
|
schedule:
|
|
- cron: "0 14 * * *" # 14:00 UTC
|
|
jobs:
|
|
cargo-audit:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v3
|
|
- uses: actions-rs/audit-check@v1
|
|
# Don't run on dependabot PRs or forks
|
|
# https://github.com/actions-rs/clippy-check/issues/2#issuecomment-807852653
|
|
if: github.event.pull_request.head.repo.full_name == github.repository && github.actor != 'dependabot[bot]'
|
|
with:
|
|
token: ${{ secrets.GITHUB_TOKEN }}
|