From 34241b14cd4c254d594ad3a7079e4a28cf678d6c Mon Sep 17 00:00:00 2001
From: tarepan <tarepan5884@gmail.com>
Date: Thu, 28 Mar 2024 18:25:12 +0000
Subject: [PATCH 1/4] =?UTF-8?q?add:=20=E5=AE=9A=E6=9C=9F=E8=84=86=E5=BC=B1?=
 =?UTF-8?q?=E6=80=A7=E8=A8=BA=E6=96=AD=E3=82=92=E5=B0=8E=E5=85=A5?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .github/workflows/audit.yml | 33 +++++++++++++++++++++++++++++++++
 1 file changed, 33 insertions(+)
 create mode 100644 .github/workflows/audit.yml

diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
new file mode 100644
index 000000000..e4122b2b5
--- /dev/null
+++ b/.github/workflows/audit.yml
@@ -0,0 +1,33 @@
+# Python 依存パッケージの脆弱性診断を定期的に行う
+
+name: audit-python
+
+on:
+  schedule:
+    - cron: '00 04 15 * *' # 毎月15日 13:00 JST
+
+env:
+  PYTHON_VERSION: "3.11.3"
+
+defaults:
+  run:
+    shell: bash
+  
+jobs:
+  audit:
+    runs-on: ubuntu-20.04
+    steps:
+      - name: <Setup> Check out the repository 
+        uses: actions/checkout@v4
+
+      - name: <Setup> Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: ${{ env.PYTHON_VERSION }}
+          cache: pip
+
+      - name: <Setup> Install Python dependencies
+        run: pip install safety
+
+      - name: <Test> Audit Python dependencies
+        run: safety check -r requirements.txt -r requirements-dev.txt -r requirements-test.txt -r requirements-license.txt -o bare

From a2493c484f381921c35ed7da1525ac644e1ed445 Mon Sep 17 00:00:00 2001
From: tarepan <tarepan5884@gmail.com>
Date: Thu, 28 Mar 2024 18:26:13 +0000
Subject: [PATCH 2/4] =?UTF-8?q?=E8=BF=BD=E5=8A=A0:=20=E8=A8=AD=E8=A8=88?=
 =?UTF-8?q?=E6=84=8F=E5=9B=B3=E3=82=92=E8=BF=BD=E8=A8=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .github/workflows/audit.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
index e4122b2b5..6617bc7af 100644
--- a/.github/workflows/audit.yml
+++ b/.github/workflows/audit.yml
@@ -1,4 +1,5 @@
 # Python 依存パッケージの脆弱性診断を定期的に行う
+# NOTE: 公式 Action は API key 等を必要とするため利用しない（https://github.com/pyupio/safety-action/tree/main）
 
 name: audit-python
 

From 08f1563c05733d8ac46a342121a77dbdd8c4f07a Mon Sep 17 00:00:00 2001
From: tarepan <tarepan5884@gmail.com>
Date: Sun, 7 Apr 2024 15:43:44 +0000
Subject: [PATCH 3/4] =?UTF-8?q?fix:=20audit=20=E3=82=92=20test=20security?=
 =?UTF-8?q?=20=E3=81=A7=E8=A8=80=E3=81=84=E6=8F=9B=E3=81=88?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .github/workflows/{audit.yml => test-security.yml} | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)
 rename .github/workflows/{audit.yml => test-security.yml} (90%)

diff --git a/.github/workflows/audit.yml b/.github/workflows/test-security.yml
similarity index 90%
rename from .github/workflows/audit.yml
rename to .github/workflows/test-security.yml
index 6617bc7af..bb1c3bf96 100644
--- a/.github/workflows/audit.yml
+++ b/.github/workflows/test-security.yml
@@ -1,7 +1,7 @@
 # Python 依存パッケージの脆弱性診断を定期的に行う
 # NOTE: 公式 Action は API key 等を必要とするため利用しない（https://github.com/pyupio/safety-action/tree/main）
 
-name: audit-python
+name: test-security
 
 on:
   schedule:
@@ -15,7 +15,7 @@ defaults:
     shell: bash
   
 jobs:
-  audit:
+  test-security:
     runs-on: ubuntu-20.04
     steps:
       - name: <Setup> Check out the repository 
@@ -30,5 +30,5 @@ jobs:
       - name: <Setup> Install Python dependencies
         run: pip install safety
 
-      - name: <Test> Audit Python dependencies
+      - name: <Test> Check Python dependency security
         run: safety check -r requirements.txt -r requirements-dev.txt -r requirements-test.txt -r requirements-license.txt -o bare

From 485c780a565c6422873f7876976198cb907f2264 Mon Sep 17 00:00:00 2001
From: tarepan <tarepan5884@gmail.com>
Date: Wed, 10 Apr 2024 04:00:53 +0000
Subject: [PATCH 4/4] =?UTF-8?q?fix:=20`safety`=20CI=20=E3=81=AE=E3=83=90?=
 =?UTF-8?q?=E3=83=BC=E3=82=B8=E3=83=A7=E3=83=B3=E3=82=92=E7=AE=A1=E7=90=86?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .github/workflows/test-security.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/test-security.yml b/.github/workflows/test-security.yml
index bb1c3bf96..c96002d20 100644
--- a/.github/workflows/test-security.yml
+++ b/.github/workflows/test-security.yml
@@ -28,7 +28,7 @@ jobs:
           cache: pip
 
       - name: <Setup> Install Python dependencies
-        run: pip install safety
+        run: pip install -r requirements-dev.txt
 
       - name: <Test> Check Python dependency security
         run: safety check -r requirements.txt -r requirements-dev.txt -r requirements-test.txt -r requirements-license.txt -o bare