name: Backend Security Audit

on:
  schedule:
    - cron: '0 0 * * *'
  push:
    paths:
      - 'Cargo.toml'
      - 'Cargo.lock'

jobs:
  audit:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4

      - name: Setup Rust
        uses: actions-rs/toolchain@v1
        with:
          profile: minimal
          toolchain: stable
          override: true

      - uses: actions-rs/audit-check@v1
        env:
          CARGO_TERM_COLOR: always
        with:
          token: ${{ secrets.GITHUB_TOKEN }}