sec: add a security-audit workflow in CI

This CL introduces: - adds a security audit check in CI workflow aiming to check any security issues in packages. - updates packages versions
2026-03-10 08:11:21 +00:00 · 2021-06-08 10:44:46 +02:00
parent e2c3b29669
commit c8d409c4a8
4 changed files with 683 additions and 652 deletions
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -7,6 +7,13 @@ on:
    branches-ignore: [ main, dev ]

 jobs:
+  security_audit:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v1
+      - uses: actions-rs/audit-check@v1
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
  build:
    runs-on: ubuntu-latest
    steps: