1# Copyright 2023 Google LLC
2#
3# Licensed under the Apache License, Version 2.0 (the "License");
4# you may not use this file except in compliance with the License.
5# You may obtain a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS,
11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12# See the License for the specific language governing permissions and
13# limitations under the License.
14
15name: govulncheck
16
17# Declare default permissions as read only.
18permissions: read-all
19
20on:
21 push:
22 branches:
23 - 'main'
24 pull_request:
25 pull_request_target:
26 types: [labeled]
27 schedule:
28 - cron: '0 2 * * *'
29
30jobs:
31 govulncheck_job:
32 runs-on: ubuntu-latest
33 name: Run govulncheck
34 steps:
35 - name: Setup Go
36 uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
37 with:
38 go-version: "1.22"
39 check-latest: true
40 - name: Checkout code
41 uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
42 with:
43 ref: ${{ github.event.pull_request.head.sha }}
44 repository: ${{ github.event.pull_request.head.repo.full_name }}
45 - id: govulncheck
46 uses: golang/govulncheck-action@3a32958c2706f7048305d5a2e53633d7e37e97d0 # v1
47 with:
48 # Let actions/checkout above check-out the correct SHA
49 repo-checkout: false
View as plain text