[add] weekly CVE scanning action (#71)

luojiyin1987 · web-flow · commit 96f3b06ea48b · 2026-05-02T22:31:47.000+08:00
Signed-off-by: luojiyin &lt;luojiyin@hotmail.com&gt;
diff --git a/.github/workflows/self-scan.yml b/.github/workflows/self-scan.yml
@@ -0,0 +1,17 @@
+name: Self Scan
+
+on:
+  schedule:
+    - cron: '0 3 * * 1' # Every Monday at UTC 3:00 AM
+  workflow_dispatch:
+
+jobs:
+  self-scan:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+
+      - uses: OWASP/cve-lite-cli@v1
+        with:
+          verbose: "true"
+          fail-on: high
diff --git a/README.md b/README.md
@@ -3,6 +3,7 @@
 开源市集官网项目
 
 [![CI & CD](https://github.com/Open-Source-Bazaar/Open-Source-Bazaar.github.io/actions/workflows/main.yml/badge.svg)][7]
+[![Self Scan](https://github.com/Open-Source-Bazaar/Open-Source-Bazaar.github.io/actions/workflows/self-scan.yml/badge.svg)][12]
 
 ## 项目简介
 
@@ -35,3 +36,4 @@ pnpm dev
 [7]: https://github.com/Open-Source-Bazaar/Open-Source-Bazaar.github.io/actions/workflows/main.yml
 [10]: https://github.com/features/actions
 [11]: https://vercel.com/
+[12]: https://github.com/Open-Source-Bazaar/Open-Source-Bazaar.github.io/actions/workflows/self-scan.yml
