diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index e67b69a..fd1f157 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -7,6 +7,9 @@ on: branches: [main] workflow_call: +permissions: + contents: read + env: CARGO_TERM_COLOR: always @@ -45,6 +48,7 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - - uses: rustsec/audit-check@v2.0.0 + - uses: taiki-e/install-action@v2 with: - token: ${{ secrets.GITHUB_TOKEN }} + tool: cargo-audit + - run: cargo audit diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index d6f730e..0a35311 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -4,6 +4,9 @@ on: release: types: [published] +permissions: + contents: read + env: CARGO_TERM_COLOR: always