build: Run cargo-audit from a GitHub action

Signed-off-by: Rob Bradford <robert.bradford@intel.com>
2024-07-04 17:02:36 +00:00 · 2020-08-13 13:33:21 +01:00 · 2020-08-13 13:33:21 +01:00 · bf4051665c
commit bf4051665c
parent 6b40f2dbc5
1 changed files with 15 additions and 0 deletions
--- a/.github/workflows/audit.yaml
+++ b/.github/workflows/audit.yaml
@ -0,0 +1,15 @@
+name: Cloud Hypervisor Dependency Audit
+on:
+  pull_request:
+    paths: 
+      - '**/Cargo.toml'
+      - '**/Cargo.lock'
+jobs:
+  security_audit:
+    name: Audit
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v1
+      - uses: actions-rs/audit-check@v1
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}