CI: use latest rustsec/audit-check for security audit

It was previously using a very outdated version of the abandoned `actions-rs/audit-check`. This updates to the latest version with Cargo.lock V4 support.
RustCrypto · Dec 11, 2024 · 8f9e745 · 8f9e745
1 parent 5ac4b3e
commit 8f9e745
Showing 1 changed file with 7 additions and 4 deletions.
diff --git a/.github/workflows/security-audit.yml b/.github/workflows/security-audit.yml
@@ -1,10 +1,13 @@
 name: Security Audit
 on:
   pull_request:
-    paths: Cargo.lock
+    paths:
+      - Cargo.lock
+      - .github/workflows/security-audit.yml
   push:
     branches: master
-    paths: Cargo.lock
+    paths:
+      - Cargo.lock
   schedule:
     - cron: "0 0 * * *"
 
@@ -18,7 +21,7 @@ jobs:
         uses: actions/cache@v4
         with:
           path: ~/.cargo/bin
-          key: ${{ runner.os }}-cargo-audit-v0.13.0
-      - uses: actions-rs/audit-check@v1
+          key: ${{ runner.os }}-cargo-audit-v0.21.0
+      - uses: rustsec/audit-check@v2
         with:
           token: ${{ secrets.GITHUB_TOKEN }}