homelab-mcp

name: Dependency Security Audit on: push: branches: [ main, develop ] pull_request: branches: [ main, develop ] schedule: # Run weekly on Monday at 9am UTC - cron: '0 9 * * 1' jobs: dependency-audit: runs-on: ubuntu-latest steps: - name: Checkout code uses: actions/checkout@v4 - name: Set up Python uses: actions/setup-python@v5 with: python-version: '3.10' - name: Install dependencies run: | python -m pip install --upgrade pip pip install safety pip-audit - name: Check for dependency vulnerabilities with Safety run: | echo "Checking dependencies with Safety..." safety check --json || echo "::warning::Potential vulnerabilities found" continue-on-error: true - name: Audit dependencies with pip-audit run: | echo "Auditing dependencies with pip-audit..." pip-audit -r requirements.txt || echo "::warning::Vulnerabilities detected" continue-on-error: true - name: Check for outdated packages run: | echo "Checking for outdated packages..." pip list --outdated - name: Summary run: | echo "✅ Dependency audit completed!" echo "Review any warnings about vulnerable or outdated packages."