mirror of
https://github.com/GothenburgBitFactory/taskwarrior.git
synced 2025-07-07 20:06:36 +02:00
3aa14b3efc
This is a vulnerability in tokio, which is required by Actix-web. For the moment, ignore it, and then decide whether to upgrade actix to suit, or switch to a different (simpler) web server package.
21 lines
418 B
YAML
21 lines
418 B
YAML
name: security
|
|
|
|
on:
|
|
schedule:
|
|
- cron: '0 0 * * *'
|
|
push:
|
|
paths:
|
|
- '**/Cargo.toml'
|
|
- '**/Cargo.lock'
|
|
|
|
jobs:
|
|
audit:
|
|
runs-on: ubuntu-latest
|
|
permissions: write-all
|
|
name: "Audit Dependencies"
|
|
steps:
|
|
- uses: actions/checkout@v2
|
|
- uses: GothenburgBitFactory/audit-check@master
|
|
with:
|
|
ignore: RUSTSEC-2021-0124
|
|
token: ${{ secrets.GITHUB_TOKEN }}
|