Files
taskchampion-sync-server/.github/workflows/security.yml
Phil Crockett 95da645ae5 Update and pin GitHub actions (#211)
Using `pinact run --update`

<https://github.com/suzuki-shunsuke/pinact>

Also: dependabot will continue functioning as usual, and it also knows
how to update the version comments.
2026-06-13 14:44:46 -04:00

21 lines
467 B
YAML

name: security
on:
schedule:
- cron: '33 0 * * THU'
push:
paths:
- '**/Cargo.toml'
- '**/Cargo.lock'
jobs:
audit:
runs-on: ubuntu-latest
permissions: write-all
name: "Audit Rust Dependencies"
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
- uses: rustsec/audit-check@69366f33c96575abad1ee0dba8212993eecbe998 # v2.0.0
with:
token: ${{ secrets.GITHUB_TOKEN }}