We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
2 parents 64c1cfd + efa0f35 commit cd9f677Copy full SHA for cd9f677
1 file changed
.github/workflows/go.yml
@@ -25,3 +25,29 @@ jobs:
25
26
- name: Test
27
run: go test -v ./...
28
+
29
+ - name: Install Syft
30
+ run: |
31
+ curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin
32
33
+ - name: Generate SBOM
34
35
+ syft . -o table=sbom-table.txt
36
37
+ - name: Install Grype
38
39
+ curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
40
41
+ - name: Run Grype vulnerability scan
42
43
+ grype . --output table --file grype-report.txt
44
45
+ - name: Upload Security Reports
46
+ uses: actions/upload-artifact@v4
47
+ if: always()
48
+ with:
49
+ name: security-reports-${{ github.sha }}
50
+ path: |
51
+ sbom-table.txt
52
+ grype-report.*
53
+ retention-days: 10
0 commit comments