.github/workflows/audit.yml
name: Audit
on:
push:
branches: [ master ]
pull_request:
branches: [ master ]
jobs:
audit:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Setup Ruby and install gems
uses: ruby/setup-ruby@473e4d8fe5dd94ee328fdfca9f8c9c7afc9dae5e
with:
ruby-version: 2.7
bundler-cache: true
- name: Run security checks
run: |
bin/bundler-audit --update