mirror of
https://github.com/actions-rust-lang/audit.git
synced 2025-12-27 01:43:48 -05:00
Compare commits
14 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
|
5c5da92c03 | ||
|
|
17d62dc82d | ||
|
|
733aff2088 | ||
|
|
95e05e5d8e | ||
|
|
969643f199 | ||
|
|
7614934373 | ||
|
|
946808f018 | ||
|
|
1fcfd212ac | ||
|
|
d26dd44917 | ||
|
|
645e2942e8 | ||
|
|
965b6233a3 | ||
|
|
9fe902be91 | ||
|
|
94cd57b0d8 | ||
|
|
5330a4041e |
@@ -1,10 +1,10 @@
|
||||
repos:
|
||||
- repo: https://github.com/psf/black
|
||||
rev: 24.4.2
|
||||
rev: 24.10.0
|
||||
hooks:
|
||||
- id: black
|
||||
- repo: https://github.com/pre-commit/pre-commit-hooks
|
||||
rev: v4.6.0
|
||||
rev: v5.0.0
|
||||
hooks:
|
||||
- id: check-ast
|
||||
- id: check-case-conflict
|
||||
@@ -20,18 +20,18 @@ repos:
|
||||
- id: isort
|
||||
args: ["--profile=black"]
|
||||
- repo: https://github.com/asottile/pyupgrade
|
||||
rev: v3.17.0
|
||||
rev: v3.19.0
|
||||
hooks:
|
||||
- id: pyupgrade
|
||||
args: ["--py37-plus"]
|
||||
- repo: https://github.com/pre-commit/mirrors-mypy
|
||||
rev: v1.11.0
|
||||
rev: v1.13.0
|
||||
hooks:
|
||||
- id: mypy
|
||||
additional_dependencies:
|
||||
- types-requests
|
||||
- repo: https://github.com/python-jsonschema/check-jsonschema
|
||||
rev: 0.29.1
|
||||
rev: 0.29.4
|
||||
hooks:
|
||||
- id: check-dependabot
|
||||
- id: check-github-actions
|
||||
|
||||
@@ -7,6 +7,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
||||
|
||||
## [Unreleased]
|
||||
|
||||
## [1.2.2] - 2024-11-06
|
||||
|
||||
* Update `cargo-audit` to 0.21.0
|
||||
|
||||
## [1.2.1] - 2024-07-31
|
||||
|
||||
* Temporarily remove `--locked` from the install instructions again, since cargo-audit relies on an old version of `time` that is incompatible with Rust 1.80.
|
||||
|
||||
12
README.md
12
README.md
@@ -58,6 +58,18 @@ Setting `denyWarnings` to true will also enable these warnings, but each warning
|
||||
| `createIssues` | Create/Update issues for each found vulnerability. By default only on `main` or `master` branch. | `github.ref == 'refs/heads/master' \|\| github.ref == 'refs/heads/main'` |
|
||||
| `workingDirectory` | Run `cargo audit` from the given working directory | |
|
||||
|
||||
## Dependencies
|
||||
|
||||
The action works best on the GitHub-hosted runners, but can work on self-hosted ones too, provided the necessary dependencies are available.
|
||||
PRs to add support for more environments are welcome.
|
||||
|
||||
* bash
|
||||
* Python 3.9+
|
||||
* requests
|
||||
* Rust stable
|
||||
* cargo
|
||||
* use node actions
|
||||
|
||||
## License
|
||||
|
||||
The scripts and documentation in this project are released under the [MIT License].
|
||||
|
||||
@@ -45,12 +45,12 @@ runs:
|
||||
${{ steps.cargo-home.outputs.cargohome }}/bin/cargo-audit*
|
||||
${{ steps.cargo-home.outputs.cargohome }}/.crates.toml
|
||||
${{ steps.cargo-home.outputs.cargohome }}/.crates2.json
|
||||
key: cargo-audit-v0.20.0
|
||||
key: cargo-audit-v0.21.0
|
||||
|
||||
- name: Install cargo-audit
|
||||
if: steps.cache.outputs.cache-hit != 'true'
|
||||
# Update both this version number and the cache key
|
||||
run: cargo install cargo-audit --vers 0.20.0 --no-default-features
|
||||
run: cargo install cargo-audit --vers 0.21.0 --no-default-features
|
||||
shell: bash
|
||||
|
||||
- run: |
|
||||
|
||||
Reference in New Issue
Block a user