From d30cc128fe24dd24a04b9cd3d96786ab227b6049 Mon Sep 17 00:00:00 2001
From: Daniel Szoke <daniel.szoke@sentry.io>
Date: Fri, 3 Oct 2025 15:13:42 +0200
Subject: [PATCH] ci: Add action to audit Rust dependencies

Fixes #2567
Fixes CLI-119
---
 .github/workflows/audit.yml | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 .github/workflows/audit.yml

diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
new file mode 100644
index 0000000000..9d9b7ca551
--- /dev/null
+++ b/.github/workflows/audit.yml
@@ -0,0 +1,25 @@
+name: Audit dependencies
+
+permissions:
+  issues: write
+  checks: write
+
+on:
+  schedule:
+    # Run weekly Monday morning
+    - cron: "49 4 * * 1"
+
+  workflow_dispatch:
+
+jobs:
+  audit:
+    name: Audit dependencies
+    runs-on: ubuntu-24.04
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # 5.0.0
+
+      - name: Audit dependencies
+        uses: rustsec/audit-check@69366f33c96575abad1ee0dba8212993eecbe998 # 2.0.0
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}