Skip to content

Commit

Permalink
ci: update cargo deny (#21)
Browse files Browse the repository at this point in the history
  • Loading branch information
camshaft authored Nov 20, 2024
1 parent ac65db2 commit 66dc84e
Show file tree
Hide file tree
Showing 2 changed files with 9 additions and 37 deletions.
8 changes: 0 additions & 8 deletions .github/config/cargo-deny.toml
Original file line number Diff line number Diff line change
@@ -1,9 +1,5 @@
[advisories]
vulnerability = "deny"
unmaintained = "deny"
notice = "deny"
yanked = "deny"
ignore = []

[bans]
multiple-versions = "deny"
Expand All @@ -16,13 +12,9 @@ unknown-registry = "deny"
unknown-git = "deny"

[licenses]
unlicensed = "deny"
allow-osi-fsf-free = "neither"
copyleft = "deny"
confidence-threshold = 0.90
allow = [
"Apache-2.0",
"MIT",
"Unicode-DFS-2016",
"Zlib",
]
38 changes: 9 additions & 29 deletions .github/workflows/dependencies.yml
Original file line number Diff line number Diff line change
Expand Up @@ -5,51 +5,31 @@ on:
branches:
- main
paths:
- '**/Cargo.toml'
- '**/Cargo.lock'
- '.github/workflows/dependencies.yml'
- "**/Cargo.toml"
- "**/Cargo.lock"
- ".github/workflows/dependencies.yml"

pull_request:
branches:
- main
paths:
- '**/Cargo.toml'
- '**/Cargo.lock'
- '.github/workflows/dependencies.yml'
- "**/Cargo.toml"
- "**/Cargo.lock"
- ".github/workflows/dependencies.yml"

schedule:
# run every morning at 10am Pacific Time
- cron: '0 17 * * *'
- cron: "0 17 * * *"

jobs:
audit:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3

- uses: actions-rs/toolchain@v1
id: toolchain
with:
toolchain: stable
profile: minimal
override: true

- uses: camshaft/install@v1
with:
crate: cargo-audit

- uses: actions-rs/audit-check@v1
with:
token: ${{ secrets.GITHUB_TOKEN }}

deny:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- uses: actions/checkout@v4

- name: "Remove rust-toolchain"
run: rm rust-toolchain

- uses: EmbarkStudios/cargo-deny-action@v1
- uses: EmbarkStudios/cargo-deny-action@v2
with:
command: check --config .github/config/cargo-deny.toml

0 comments on commit 66dc84e

Please sign in to comment.