name: cve-rescan

on:
  schedule:
    - cron: "0 5 1 * *"   # 05:00 UTC on the 1st of each month
  workflow_dispatch:

jobs:
  rescan:
    runs-on: ubuntu-22.04
    steps:
      - uses: actions/checkout@v4
      - uses: actions/setup-python@v5
        with:
          python-version: "3.10"
      - run: pip install pip-audit
      - run: pip-audit -r pyproject.toml
      - name: OpenCV pin gate (D-CROSS-CVE-1)
        run: python ci/opencv_pin_gate.py --pyproject pyproject.toml