From 5c0d6539580cebbc8f5ac362f2c181595e8c7936 Mon Sep 17 00:00:00 2001 From: vivekpatani <9080894+vivekpatani@users.noreply.github.com> Date: Tue, 25 Oct 2022 13:53:31 -0700 Subject: [PATCH] .github: add govuln check - add job for govuln job - allow to continue on failure, until all issues are addressed - address: https://github.com/etcd-io/etcd/issues/14449 Signed-off-by: vivekpatani <9080894+vivekpatani@users.noreply.github.com> --- .github/workflows/govuln.yaml | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 .github/workflows/govuln.yaml diff --git a/.github/workflows/govuln.yaml b/.github/workflows/govuln.yaml new file mode 100644 index 00000000000..5f6a2e2b070 --- /dev/null +++ b/.github/workflows/govuln.yaml @@ -0,0 +1,26 @@ +name: Go Vulnerability Checker +on: [push, pull_request] +jobs: + test: + runs-on: ubuntu-latest + strategy: + fail-fast: false + matrix: + target: + - linux-amd64-govuln-check + steps: + - uses: actions/checkout@v2 + - uses: actions/setup-go@v2 + with: + go-version: "1.19.2" + - run: date + - env: + TARGET: ${{ matrix.target }} + run: | + echo "${TARGET}" + case "${TARGET}" in + linux-amd64-govuln-check) + go install golang.org/x/vuln/cmd/govulncheck@latest + govulncheck ./... + ;; + esac