name: Cargo security audit
on:
  schedule:
    - cron: "31 1 * * *"

  push:
    paths:
      - "**/Cargo.toml"
      - "**/Cargo.lock"
jobs:
  audit:
    defaults:
      run:
        working-directory: ./backend

    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v5

      - uses: rustsec/audit-check@v2
        with:
          token: ${{ secrets.GITHUB_TOKEN }}