bundler-audit.yml 835 B

12345678910111213141516171819202122232425262728293031323334353637383940
  1. name: Bundler Audit
  2. on:
  3. push:
  4. branches-ignore:
  5. - 'dependabot/**'
  6. paths:
  7. - 'Gemfile*'
  8. - '.ruby-version'
  9. - '.bundler-audit.yml'
  10. - '.github/workflows/bundler-audit.yml'
  11. pull_request:
  12. paths:
  13. - 'Gemfile*'
  14. - '.ruby-version'
  15. - '.bundler-audit.yml'
  16. - '.github/workflows/bundler-audit.yml'
  17. schedule:
  18. - cron: '0 5 * * 1'
  19. jobs:
  20. security:
  21. runs-on: ubuntu-latest
  22. steps:
  23. - name: Clone repository
  24. uses: actions/checkout@v3
  25. - name: Install native Ruby dependencies
  26. run: sudo apt-get install -y libicu-dev libidn11-dev
  27. - name: Set up Ruby
  28. uses: ruby/setup-ruby@v1
  29. with:
  30. ruby-version: .ruby-version
  31. bundler-cache: true
  32. - name: Run bundler-audit
  33. run: bundle exec bundler-audit