diff options
author | Nora Widdecke <nora@sequoia-pgp.org> | 2021-09-28 14:01:43 +0200 |
---|---|---|
committer | Nora Widdecke <nora@sequoia-pgp.org> | 2021-10-12 14:57:34 +0200 |
commit | e075fe839f4b7f74c8a9ee46cc54a76e37cbc16b (patch) | |
tree | 606401b1a005a7b98f0ded8e65902e6890dd45cf | |
parent | ed02a339d613c3ad0f207bbb61bbe96a688b9a2d (diff) |
ci: Add cargo audit job.nora/audit
- `cargo audit` checks Cargo.lock files for crates containing security
vulnerabilities that have been published on rustsec.org
-rw-r--r-- | .gitlab-ci.yml | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index c30c5476..182840a2 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -200,6 +200,25 @@ codespell: - $MAKE_TOP codespell CODESPELL_FLAGS=--summary after_script: [] +audit: + tags: + - linux + stage: pre-check + image: registry.gitlab.com/sequoia-pgp/build-docker-image/bullseye-prebuild:latest + only: + refs: + - /audit/i # refs containing 'audit' keyword + - tags + - web + - schedules + script: + - cargo install cargo-audit + - cargo audit --color always + variables: + CARGO_TARGET_DIR: /target + CARGO_HOME: /cargo + after_script: [] + rust-stable: tags: - linux |