xevion/byte-me
1
0
Fork 0
mirror of https://github.com/Xevion/byte-me.git synced 2025-12-09 16:06:44 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
a2c4a0bd0c1fe39a511256943bdd15e08346378b
byte-me/.github/workflows/security-audit.yml

48 lines
1.0 KiB
YAML
Raw Blame History

name: Security Audit
on:
workflow_dispatch: # Allow manual triggering
push:
jobs:
rust-audit:
name: Rust Security Audit
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v5
- name: Install cargo-audit
uses: taiki-e/install-action@cargo-audit
- name: Run cargo audit
run: cargo audit --file src-tauri/Cargo.lock
- name: Install cargo-deny
uses: taiki-e/install-action@cargo-deny
- name: Run cargo deny
run: cargo deny --manifest-path src-tauri/Cargo.toml check
npm-audit:
name: NPM Security Audit
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v5
- name: Install pnpm
uses: pnpm/action-setup@v4
with:
version: 10
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: "20"
cache: "pnpm"
- name: Install dependencies
run: pnpm install
- name: Run npm audit
run: pnpm audit --audit-level moderate
Reference in New Issue View Git Blame Copy Permalink