Audit dependencies in a cron job

New vulnerabilities are found all the time, no need to wait for Cargo.toml or Cargo.lock to change
your-tools · Oct 30, 2021 · 6534220 · 6534220
1 parent 94b30bb
commit 6534220
Showing 1 changed file with 3 additions and 4 deletions.
diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
@@ -1,9 +1,8 @@
 name: Audit dependencies
 on:
-  push:
-    paths:
-      - '**/Cargo.toml'
-      - '**/Cargo.lock'
+  schedule:
+    - cron:  '0 1 * * *'
+
 jobs:
   security_audit:
     runs-on: ubuntu-latest