xevion/byte-me
1
0
Fork 0
mirror of https://github.com/Xevion/byte-me.git synced 2025-12-06 05:14:37 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
cad28221b0117014f18e83f8e08ccb4faf5644c3
byte-me/.github/workflows/security-audit.yml

60 lines
1.3 KiB
YAML
Raw Blame History

name: Security Audit
on:
workflow_dispatch: # Allow manual triggering
push:
paths:
- "**/Cargo.toml"
- "**/Cargo.lock"
- "**/package.json"
- "**/pnpm-lock.yaml"
jobs:
rust-audit:
name: Rust Security Audit
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Install Rust toolchain
uses: dtolnay/rust-toolchain@stable
- name: Install cargo-audit
uses: taiki-e/cache-cargo-install-action@v2
with:
tool: cargo-audit
- name: Run cargo audit
run: cargo audit --file src-tauri/Cargo.lock
- name: Install cargo-deny
uses: taiki-e/cache-cargo-install-action@v2
with:
tool: cargo-deny
- name: Run cargo deny
run: cargo deny --manifest-path src-tauri/Cargo.toml check
npm-audit:
name: NPM Security Audit
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: "20"
cache: "pnpm"
- name: Install pnpm
uses: pnpm/action-setup@v4
with:
version: 8
- name: Install dependencies
run: pnpm install
- name: Run npm audit
run: pnpm audit --audit-level moderate
Reference in New Issue View Git Blame Copy Permalink