Add cargo audit to CI (#1192)

2020-05-26 17:04:39 +10:00 · 2020-05-26 17:04:39 +10:00 · d41a9f7aa6
commit d41a9f7aa6
parent f72094ca8d
2 changed files with 12 additions and 0 deletions
--- a/.github/workflows/test-suite.yml
+++ b/.github/workflows/test-suite.yml
@ -92,3 +92,10 @@ jobs:
   - uses: actions/checkout@v1
   - name: Validate state_processing feature arbitrary-fuzz
     run:  make arbitrary-fuzz
+  cargo-audit:
+   runs-on: ubuntu-latest
+   needs: cargo-fmt
+   steps:
+   - uses: actions/checkout@v1
+   - name: Run cargo audit to identify known security vulnerabilities reported to the RustSec Advisory Database
+     run:  make audit
--- a/5
+++ b/5
@ -67,6 +67,11 @@ make-ef-tests:
 arbitrary-fuzz:
 	cargo check --manifest-path=consensus/state_processing/Cargo.toml --features arbitrary-fuzz

+# Runs cargo audit (Audit Cargo.lock files for crates with security vulnerabilities reported to the RustSec Advisory Database)
+audit:
+	cargo install --force cargo-audit
+	cargo audit
+
 # Performs a `cargo` clean and cleans the `ef_tests` directory.
 clean:
 	cargo clean