From 4df7d5628b776a33f096516c89db7761de714b21 Mon Sep 17 00:00:00 2001 From: Robert Sirchia Date: Fri, 6 Sep 2024 11:37:08 -0400 Subject: [PATCH] adding new workflows for govulncheck Signed-off-by: Robert Sirchia --- .github/workflows/daily-govulncheck.yml | 18 ++++++++++++++++++ .github/workflows/file-govulncheck.yml | 19 +++++++++++++++++++ 2 files changed, 37 insertions(+) create mode 100644 .github/workflows/daily-govulncheck.yml create mode 100644 .github/workflows/file-govulncheck.yml diff --git a/.github/workflows/daily-govulncheck.yml b/.github/workflows/daily-govulncheck.yml new file mode 100644 index 000000000..c41c1bcf6 --- /dev/null +++ b/.github/workflows/daily-govulncheck.yml @@ -0,0 +1,18 @@ +name: daily-govulncheck +on: + schedule: + - cron: "0 0 * * *" + +jobs: + govulncheck: + name: govulncheck + runs-on: ubuntu-latest + steps: + - name: Setup Go + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # pin@5.0.2 + with: + go-version: '1.22' + - name: govulncheck + uses: golang/govulncheck-action@dd0578b371c987f96d1185abb54344b44352bd58 # pin@1.0.3 + with: + go-package: ./... \ No newline at end of file diff --git a/.github/workflows/file-govulncheck.yml b/.github/workflows/file-govulncheck.yml new file mode 100644 index 000000000..e734c842b --- /dev/null +++ b/.github/workflows/file-govulncheck.yml @@ -0,0 +1,19 @@ +name: file-govulncheck +on: + push: + paths: + - go.sum + +jobs: + govulncheck: + name: govulncheck + runs-on: ubuntu-latest + steps: + - name: Setup Go + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # pin@5.0.2 + with: + go-version: '1.22' + - name: govulncheck + uses: golang/govulncheck-action@dd0578b371c987f96d1185abb54344b44352bd58 # pin@1.0.3 + with: + go-package: ./... \ No newline at end of file