From c748be211a241ac17e82b92be193c848e2dfcf6d Mon Sep 17 00:00:00 2001 From: marcello33 Date: Tue, 15 Nov 2022 15:07:45 +0100 Subject: [PATCH] dev: add: pos-976 move govuln to security-ci --- .github/workflows/security-ci.yml | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/.github/workflows/security-ci.yml b/.github/workflows/security-ci.yml index 4d18a683dd..71c8a94a65 100644 --- a/.github/workflows/security-ci.yml +++ b/.github/workflows/security-ci.yml @@ -39,3 +39,16 @@ jobs: uses: github/codeql-action/upload-sarif@v2 with: sarif_file: snyk.sarif + + govuln-check: + name: Golang vulnerabilities check + runs-on: ubuntu-latest + steps: + - name: Running govulncheck + uses: Templum/govulncheck-action@v0.0.6 + with: + go-version: 1.18 + vulncheck-version: latest + package: ./... + github-token: ${{ secrets.GITHUB_TOKEN }} + fail-on-vuln: true