fix: add audit-check #20
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Rust Tests & Linting | |
| on: | |
| push: | |
| jobs: | |
| build_and_test: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| security-events: write | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| - name: Install Rust | |
| uses: actions-rs/toolchain@v1 | |
| with: | |
| profile: minimal | |
| toolchain: stable | |
| components: clippy | |
| override: true | |
| - name: Install required cargo | |
| run: cargo install clippy-sarif sarif-fmt cargo-audit | |
| - name: Build | |
| run: cargo test --no-run --workspace --all-features | |
| - name: Default features | |
| run: cargo test --workspace | |
| - name: All features | |
| run: cargo test --workspace --all-features | |
| - name: No-default features | |
| run: cargo test --workspace --no-default-features | |
| - name: Run Clippy | |
| run: | | |
| cargo clippy --all-features --message-format=json | clippy-sarif | tee results_clippy.sarif | sarif-fmt | |
| continue-on-error: true | |
| - name: Upload clippy results to GitHub | |
| uses: github/codeql-action/upload-sarif@v3 | |
| with: | |
| sarif_file: results_clippy.sarif | |
| wait-for-processing: true | |
| - name: Security audit | |
| uses: actions-rs/[email protected] | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} |