Merge pull request #2141 from squidowl/notification-fixes #1951
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Security | |
| permissions: {} | |
| on: | |
| pull_request: | |
| branches: | |
| - main | |
| paths: | |
| - '**/Cargo.toml' | |
| - '**/Cargo.lock' | |
| push: | |
| branches: | |
| - main | |
| paths: | |
| - '**/Cargo.toml' | |
| - '**/Cargo.lock' | |
| schedule: | |
| # minute hour day_of_month month day_of_week | |
| - cron: "25 4 * * *" | |
| jobs: | |
| cargo-audit: | |
| name: Cargo Audit | |
| runs-on: ubuntu-latest | |
| continue-on-error: true | |
| permissions: | |
| checks: write | |
| contents: read | |
| issues: write | |
| steps: | |
| - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 | |
| - uses: rustsec/audit-check@69366f33c96575abad1ee0dba8212993eecbe998 # v2.0.0 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| ignore: RUSTSEC-2023-0071,RUSTSEC-2026-0097,RUSTSEC-2026-0194,RUSTSEC-2026-0195 | |
| # RUSTSEC-2023-0071 rsa: Marvin Attack - no fix available, transitive via arti-client (which is unaffected https://gitlab.torproject.org/tpo/core/arti/-/issues/1141) | |
| # RUSTSEC-2026-0097 rand: unsound when certain conditions are met - no fix available, transitive via arti-client | |
| # RUSTSEC-2026-0194 & RUSTSEC-2026-0195 quick-xml: patches not available, transitive via display-info, iced, notify-rust, rfd |