.github/workflows/audit.yml
name: Audit
on:
push:
branches: [ master ]
pull_request:
branches: [ master ]
jobs:
audit:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: Setup Ruby and install gems
uses: ruby/setup-ruby@8a45918450651f5e4784b6031db26f4b9f76b251
with:
ruby-version: 2.7
bundler-cache: true
- name: Run security checks
run: |
bin/bundler-audit --update