Add cancel mechanisms: double-press and mid-transcription hotkey #21
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Security | |
| on: | |
| schedule: | |
| - cron: '0 9 * * 1' # Every Monday at 9am UTC | |
| pull_request: | |
| branches: [main] | |
| permissions: | |
| security-events: write | |
| jobs: | |
| codeql: | |
| name: CodeQL analysis | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Initialize CodeQL | |
| uses: github/codeql-action/init@v3 | |
| with: | |
| languages: python | |
| - name: Run CodeQL analysis | |
| uses: github/codeql-action/analyze@v3 | |
| gitleaks: | |
| name: Secret scanning | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - name: Scan for secrets | |
| uses: gitleaks/gitleaks-action@v2 | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| dependency-audit: | |
| name: Dependency audit | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Audit whisper dependencies | |
| run: | | |
| python3 -m venv /tmp/audit-venv | |
| /tmp/audit-venv/bin/pip install --upgrade pip | |
| /tmp/audit-venv/bin/pip install faster-whisper pip-audit | |
| /tmp/audit-venv/bin/pip-audit | |
| - name: Audit moonshine dependencies | |
| run: | | |
| python3 -m venv /tmp/audit-moonshine | |
| /tmp/audit-moonshine/bin/pip install --upgrade pip | |
| /tmp/audit-moonshine/bin/pip install transformers torch soundfile pip-audit | |
| /tmp/audit-moonshine/bin/pip-audit |