CI: temporary ignore RUSTSEC-2020-0041 for cargo audit (#182)

dfinance · Oct 27, 2020 · fed2869 · fed2869
1 parent 07fab29
commit fed2869
Showing 1 changed file with 42 additions and 9 deletions.
diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
@@ -3,19 +3,52 @@ on:
   pull_request:
   push:
     branches:
-    - master
-    - release-*
+      - master
+      - release-*
 
 jobs:
-  rust:
+  audit:
     name: Audit
     runs-on: ubuntu-latest
+    defaults:
+      run:
+        shell: bash
 
     steps:
-    - name: Checkout
-      uses: actions/checkout@v2
+      - name: Checkout
+        uses: actions/checkout@v2
 
-    - name: cargo-audit
-      uses: actions-rs/audit-check@v1
-      with:
-        token: ${{ secrets.GITHUB_TOKEN }}
+      - name: Rust Toolchain
+        uses: actions-rs/toolchain@v1
+        with:
+          toolchain: ${{ matrix.rust }}
+          profile: minimal
+
+      - name: fix permissions
+        if: matrix.os == 'ubuntu-latest'
+        run: sudo chown -R $(whoami):$(id -ng) ~/.cargo/
+
+      - name: Restore cargo cache
+        uses: actions/cache@v1
+        with:
+          path: ~/.cargo
+          key: ${{ runner.os }}-cargo
+          restore-keys: |
+            ${{ runner.os }}-cargo
+
+      - name: cached cargo audit version
+        run: cargo-audit -h | sed -n 1p
+
+      - name: install cargo audit
+        continue-on-error: true
+        run: cargo install cargo-audit
+
+      - name: run cargo audit
+        run: cargo audit --ignore RUSTSEC-2020-0041
+
+      # temporary disabled because
+      # https://github.com/bodil/sized-chunks/issues/11
+      #   - name: cargo-audit
+      #     uses: actions-rs/audit-check@v1
+      #     with:
+      #       token: ${{ secrets.GITHUB_TOKEN }}