Skip to content
.github/workflows/_supply_chain.yml

.github/workflows/_supply_chain.yml #60

Sign in to view logs

.github/workflows/_supply_chain.yml

.github/workflows/_supply_chain.yml #60

Workflow file for this run

.github/workflows/_supply_chain.yml at 55747d1
jobs:
aggregate:
permissions:
contents: write
pull-requests: write
name: cargo vet aggregate
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: taiki-e/install-action@v2
with:
tool: cargo-vet
- run: cargo vet aggregate --output-file third-party-audits.toml third-party-sources.list
working-directory: supply-chain
- run: cargo vet aggregate --output-file first-party-audits.toml first-party-sources.list
working-directory: supply-chain
- uses: peter-evans/create-pull-request@v6
with:
author: cargo-vet[bot] <[email protected]>
commit-message: Aggregate new audits
title: Aggregate new audits
body: ""
branch: supply-chain/aggregate
delete-branch: true
token: ${{ secrets.MACHINE_USER_PAT }}
push-to-fork: Satelles157/nullus.github
create-issue:
permissions:
issues: write
name: create issue
runs-on: ubuntu-latest
if: failure()
needs: [aggregate]
steps:
- uses: actions/checkout@v4
- uses: JasonEtco/create-an-issue@v2
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
RUN: ${{ github.run_id }}
with:
update_existing: true
filename: aggregate-issue.md
close-issue:
permissions:
issues: write
name: close issue
runs-on: ubuntu-latest
needs: [aggregate]
steps:
- uses: lee-dohm/close-matching-issues@v2
with:
query: 'is:open label:supply-chain/aggregate'
token: ${{ secrets.GITHUB_TOKEN }}
on:
workflow_dispatch:
schedule:
- cron: '0 0 * * 3'
push:
branches: [main]
paths:
- supply-chain/*-sources.list