mirror of
https://github.com/kovidgoyal/calibre.git
synced 2025-12-17 02:25:02 -05:00
Scan dependencies for vulnerabilities in CI
This commit is contained in:
Kovid Goyal
parent
74bd44574f
commit
1803a93e98
37
.github/workflows/depscan.yml
vendored
Normal file
37
.github/workflows/depscan.yml
vendored
Normal file
@ -0,0 +1,37 @@
|
|||||||
|
name: Depscan
|
||||||
|
on:
|
||||||
|
push:
|
||||||
|
branches: [master]
|
||||||
|
schedule:
|
||||||
|
- cron: '0 12 * * 5'
|
||||||
|
|
||||||
|
env:
|
||||||
|
CI: 'true'
|
||||||
|
ASAN_OPTIONS: detect_leaks=0
|
||||||
|
LC_ALL: en_US.UTF-8
|
||||||
|
LANG: en_US.UTF-8
|
||||||
|
|
||||||
|
permissions:
|
||||||
|
contents: read # to fetch code (actions/checkout)
|
||||||
|
|
||||||
|
jobs:
|
||||||
|
dependecy-scanner:
|
||||||
|
name: Scan dependencies for vulnerabilities
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
steps:
|
||||||
|
- name: Checkout source code
|
||||||
|
uses: actions/checkout@v5
|
||||||
|
with:
|
||||||
|
fetch-depth: 10
|
||||||
|
persist-credentials: false
|
||||||
|
|
||||||
|
- name: Checkout bypy
|
||||||
|
uses: actions/checkout@v5
|
||||||
|
with:
|
||||||
|
fetch-depth: 1
|
||||||
|
persist-credentials: false
|
||||||
|
repository: kovidgoyal/bypy
|
||||||
|
path: bypy-src
|
||||||
|
|
||||||
|
- name: Check dependencies
|
||||||
|
run: python setup/unix-ci.py check-dependencies
|
||||||
Loading…
x
Reference in New Issue
Block a user