From 4a06d90c9cea2a5ab1e29a9170781787e24ecb23 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Linus=20F=C3=A4rnstrand?= <faern@faern.net>
Date: Thu, 24 Mar 2022 14:51:31 +0100
Subject: [PATCH] Replace audit check on PR push with periodical job

---
 .github/workflows/audit.yml | 13 +++++++++++++
 .github/workflows/ci.yml    | 18 +++---------------
 2 files changed, 16 insertions(+), 15 deletions(-)
 create mode 100644 .github/workflows/audit.yml

diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
new file mode 100644
index 0000000..dd5eae1
--- /dev/null
+++ b/.github/workflows/audit.yml
@@ -0,0 +1,13 @@
+name: Security audit
+on:
+  schedule:
+    # Run at 06:00 UTC every morning
+    - cron: '0 6 * * *'
+jobs:
+  audit:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v1
+      - uses: actions-rs/audit-check@v1
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
\ No newline at end of file
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 90bfd18..600d3f7 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -38,25 +38,13 @@ jobs:
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
 
-  audit:
+  security_audit:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v2
-
-      - uses: actions-rs/toolchain@v1
-        with:
-          profile: minimal
-          toolchain: stable
-          default: true
-      - name: Install cargo-audit
-        uses: actions-rs/install@v0.1.2
+      - uses: actions-rs/audit-check@v1
         with:
-          crate: cargo-audit
-          version: latest
-          use-tool-cache: true
-      - name: Audit
-        run: cargo audit --deny warnings
-
+          token: ${{ secrets.GITHUB_TOKEN }}
 
   build-and-test:
     strategy: