Skip to content

Add workflow govulncheck to detect vulnerabilitied #47

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 14 commits into
base: master
Choose a base branch
from
Open

Add workflow govulncheck to detect vulnerabilitied #47

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
af9070c
add dependency review
peczenyj Apr 18, 2024
f99e4d6
try fix dependency review
peczenyj Apr 18, 2024
aa0668c
try fix dependency review again
peczenyj Apr 18, 2024
49d621d
add badge
peczenyj Apr 18, 2024
cd38127
fix warning about setup go cache, see https://github.com/actions/setu…
peczenyj Apr 18, 2024
1c4ebfc
remove option cache
peczenyj Apr 18, 2024
2acd910
fix cache directive
peczenyj Apr 18, 2024
4b47332
rename file
peczenyj Apr 18, 2024
79b6968
change action to govulncheck
peczenyj Apr 18, 2024
a53b9e2
fix yaml
peczenyj Apr 18, 2024
9a1367f
try again
peczenyj Apr 18, 2024
5b883f9
try again
peczenyj Apr 18, 2024
f91aeb8
fix repo
peczenyj Apr 18, 2024
99a7080
fix readme
peczenyj Apr 18, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 6 additions & 2 deletions .github/workflows/go.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,11 @@
{
"name": "Set up Go ${{ matrix.go }}",
"uses": "actions/setup-go@v5",
"with": {"go-version": "${{ matrix.go }}" },
"with": {
"go-version": "${{ matrix.go }}",
"cache": true,
"cache-dependency-path": "**/go.sum",
},
Comment on lines +20 to +22
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This change is not needed, as caching enabled by default. See https://github.com/actions/setup-go#caching-dependency-files-and-build-outputs

"id": "go",
},
{"name": "Check out code into the Go module directory", "uses": "actions/checkout@v4"},
Expand All @@ -24,4 +28,4 @@
],
},
},
}
}
17 changes: 17 additions & 0 deletions .github/workflows/govulncheck.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
# This file adheres to the YAML5 style.
{
"name": "Go Vulnerability Check",
"on": ["push"],
"jobs": {
"govulncheck_job": {
"name": "Run govulncheck",
"runs-on": "ubuntu-latest",
"steps": [
{
"uses": "golang/govulncheck-action@v1",
"id": "govulncheck",
},
],
},
},
}
1 change: 1 addition & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,7 @@
[![GoDoc](https://pkg.go.dev/badge/github.com/quasilyte/go-consistent)](http://pkg.go.dev/github.com/quasilyte/go-consistent)
[![Go](https://github.com/quasilyte/go-consistent/actions/workflows/go.yml/badge.svg)](https://github.com/quasilyte/go-consistent/actions/workflows/go.yml)
[![Go Report Card](https://goreportcard.com/badge/github.com/quasilyte/go-consistent)](https://goreportcard.com/report/github.com/quasilyte/go-consistent)
[![Go Vulnerability Check](https://github.com/quasilyte/go-consistent/actions/workflows/govulncheck.yml/badge.svg)](https://github.com/quasilyte/go-consistent/actions/workflows/govulncheck.yml)
[![License](https://img.shields.io/github/license/quasilyte/go-consistent)](./LICENSE)

Source code analyzer that helps you to make your Go programs more consistent.
Expand Down
Loading