From d41a9f7aa6556832528d8a8accdd7eb07d502731 Mon Sep 17 00:00:00 2001
From: Mehdi Zerouali <zedt3ster@users.noreply.github.com>
Date: Tue, 26 May 2020 17:04:39 +1000
Subject: [PATCH] Add cargo audit to CI (#1192)

---
 .github/workflows/test-suite.yml | 7 +++++++
 Makefile                         | 5 +++++
 2 files changed, 12 insertions(+)

diff --git a/.github/workflows/test-suite.yml b/.github/workflows/test-suite.yml
index f1e556626f..ae22cf94bb 100644
--- a/.github/workflows/test-suite.yml
+++ b/.github/workflows/test-suite.yml
@@ -92,3 +92,10 @@ jobs:
    - uses: actions/checkout@v1
    - name: Validate state_processing feature arbitrary-fuzz
      run:  make arbitrary-fuzz
+  cargo-audit:
+   runs-on: ubuntu-latest
+   needs: cargo-fmt
+   steps:
+   - uses: actions/checkout@v1
+   - name: Run cargo audit to identify known security vulnerabilities reported to the RustSec Advisory Database
+     run:  make audit
diff --git a/Makefile b/Makefile
index 8f650ed0b8..1f2998e0c9 100644
--- a/Makefile
+++ b/Makefile
@@ -67,6 +67,11 @@ make-ef-tests:
 arbitrary-fuzz:
 	cargo check --manifest-path=consensus/state_processing/Cargo.toml --features arbitrary-fuzz
 
+# Runs cargo audit (Audit Cargo.lock files for crates with security vulnerabilities reported to the RustSec Advisory Database)
+audit:
+	cargo install --force cargo-audit
+	cargo audit
+
 # Performs a `cargo` clean and cleans the `ef_tests` directory.
 clean:
 	cargo clean