cache did not work, so make audit workflow separate

tshepang · tshepang · commit 368ae34ae714 · 2025-11-27T02:32:08.000+02:00
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -21,18 +21,3 @@ jobs:
     - name: install ${{ matrix.rust }} toolchain
       run: rustup update ${{ matrix.rust }} && rustup default ${{ matrix.rust }}
     - run: cargo build
-  security-audit:
-    runs-on: ubuntu-latest
-    steps:
-    - name: cache build
-      uses: actions/cache@v4
-      with:
-        path: |
-          ~/.cargo/registry/index/
-          ~/.cargo/registry/cache/
-          target/
-        key: key-${{ hashFiles('Cargo.lock') }}
-    - uses: actions/checkout@v6
-    - uses: rustsec/audit-check@v2
-      with:
-        token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/security-audit.yml b/.github/workflows/security-audit.yml
@@ -0,0 +1,16 @@
+name: security audit
+on:
+  push:
+    paths:
+      - '**/Cargo.toml'
+      - '**/Cargo.lock'
+env:
+  CARGO_TERM_COLOR: always
+jobs:
+  security-audit:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+      - uses: rustsec/audit-check@v2
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
