Skip to content

Commit d1372a5

Browse files
kddejongkddejong
authored
Merge pull request #761 from kddejong/add-govulncheck-security-scanning
Add govulncheck security scanning
2 parents db5e934 + ad48402 commit d1372a5

3 files changed

Lines changed: 34 additions & 2 deletions

File tree

.github/dependabot.yml

Lines changed: 8 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -3,4 +3,11 @@ updates:
33
- package-ecosystem: "gomod"
44
directory: "/"
55
schedule:
6-
interval: "monthly"
6+
interval: "weekly"
7+
groups:
8+
minor-and-patch:
9+
patterns:
10+
- "*"
11+
update-types:
12+
- "minor"
13+
- "patch"

.github/workflows/security.yml

Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,25 @@
1+
on:
2+
push:
3+
branches:
4+
- main
5+
pull_request:
6+
branches:
7+
- main
8+
schedule:
9+
- cron: '0 12 * * *' # Daily at 12:00 UTC
10+
11+
name: Security Scan
12+
13+
permissions:
14+
contents: read
15+
16+
jobs:
17+
govulncheck:
18+
name: Go Vulnerability Check
19+
runs-on: ubuntu-latest
20+
steps:
21+
- name: Checkout code
22+
uses: actions/checkout@v4
23+
24+
- name: Run govulncheck
25+
uses: golang/govulncheck-action@v1

.github/workflows/test.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -21,7 +21,7 @@ jobs:
2121
container: golang:latest
2222
steps:
2323
- name: Checkout code
24-
uses: actions/checkout@v2
24+
uses: actions/checkout@v4
2525

2626
- name: Install dependencies
2727
run: |

0 commit comments

Comments
 (0)