From f3ad80c822eeb03f940c14aaca712474268835e8 Mon Sep 17 00:00:00 2001
From: Jacob Bolda <me@jacobbolda.com>
Date: Tue, 10 Nov 2020 07:59:04 -0600
Subject: [PATCH] chore: allow passes cargo audit options via secrets (#1079)

This let's us more easily ignore a security error that does not have a resolution.
---
 .changes/config.json                              | 2 +-
 .github/workflows/covector-version-or-publish.yml | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/.changes/config.json b/.changes/config.json
index 05e43a36d..d2b3eff56 100644
--- a/.changes/config.json
+++ b/.changes/config.json
@@ -25,7 +25,7 @@
           "pipe": true
         },
         {
-          "command": "cargo audit fix --dry-run true",
+          "command": "cargo audit ${ process.env.CARGO_AUDIT_OPTIONS || '' }",
           "dryRunCommand": true,
           "runFromRoot": true,
           "pipe": true
diff --git a/.github/workflows/covector-version-or-publish.yml b/.github/workflows/covector-version-or-publish.yml
index e731e064e..8794967b9 100644
--- a/.github/workflows/covector-version-or-publish.yml
+++ b/.github/workflows/covector-version-or-publish.yml
@@ -32,6 +32,7 @@ jobs:
         id: covector
         env:
           NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+          CARGO_AUDIT_OPTIONS: ${{ secrets.CARGO_AUDIT_OPTIONS }}
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
           command: 'version-or-publish'