feat(ci): adds cargo audit workflow (#1318)
* feat(ci): adds cargo audit workflow * feat(audit): ignore serde_cbor dev-dependency
This commit is contained in:
parent
7b9503c8b0
commit
b3c387090c
|
@ -0,0 +1,4 @@
|
|||
[advisories]
|
||||
ignore = [
|
||||
"RUSTSEC-2021-0127", # serde_cbor dependency through the criterion dev-dependency
|
||||
]
|
|
@ -0,0 +1,14 @@
|
|||
name: Security audit
|
||||
on:
|
||||
push:
|
||||
paths:
|
||||
- '**/Cargo.toml'
|
||||
- '**/Cargo.lock'
|
||||
jobs:
|
||||
security_audit:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- uses: actions/checkout@v1
|
||||
- uses: actions-rs/audit-check@v1
|
||||
with:
|
||||
token: ${{ secrets.GITHUB_TOKEN }}
|
Loading…
Reference in New Issue