Add Safety workflow for vulnerability checks

2025-09-20 15:05:49 -05:00
parent 93530387a4
commit aabbd510ed
1 changed files with 17 additions and 0 deletions
--- a/.github/workflows/safety.yml
+++ b/.github/workflows/safety.yml
@@ -0,0 +1,17 @@
+name: Safety
+on:
+  push:
+    branches: [ main ]
+  schedule:
+    - cron: '0 0 * * 0' # weekly
+jobs:
+  security:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+    steps:
+      - uses: actions/checkout@main
+      - name: Run Safety CLI to check for vulnerabilities
+        uses: pyupio/safety-action@v1
+        with:
+          api-key: ${{ secrets.SAFETY_API_KEY }}