37 lines
820 B
YAML
37 lines
820 B
YAML
# ============================================================
|
|
# Security checks
|
|
# Проверка уязвимостей зависимостей
|
|
# ============================================================
|
|
|
|
name: Security
|
|
|
|
on:
|
|
schedule:
|
|
- cron: "0 3 * * 1"
|
|
|
|
workflow_dispatch:
|
|
|
|
jobs:
|
|
|
|
security-scan:
|
|
name: Dependency security scan
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
|
|
- name: Checkout repository
|
|
uses: actions/checkout@v4
|
|
|
|
# Установка Python
|
|
- uses: actions/setup-python@v5
|
|
with:
|
|
python-version: "3.12"
|
|
|
|
# Установка инструмента проверки
|
|
- name: Install pip-audit
|
|
run: pip install pip-audit
|
|
|
|
# Проверка зависимостей
|
|
- name: Run security audit
|
|
run: pip-audit
|