1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
|
name: cargo deny (licenses, advisories, sources)
permissions:
contents: read
on:
push:
# Check immediately if dependencies are altered
paths:
- "**/Cargo.toml"
# Check also at midnight each day
schedule:
- cron: "0 0 * * *"
# We don't need to run older workflows for the same PR's, since we always want the output of the newest ones.
concurrency:
group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true
jobs:
cargo-deny:
name: EmbarkStudios/cargo-deny
runs-on: ubuntu-latest
strategy:
matrix:
checks:
- advisories
- bans licenses sources
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
with:
persist-credentials: false
- uses: EmbarkStudios/cargo-deny-action@3fd3802e88374d3fe9159b834c7714ec57d6c979
with:
command: check ${{ matrix.checks }}
|
