feat: add action scan security govulncheck #9096

Signed-off-by: Son Bui <sonbv00@gmail.com>
2023-08-10 18:48:19 +08:00 · 2023-08-10 18:48:19 +08:00 · c87cf92976
commit c87cf92976
parent 8a578c9f4a
1 changed files with 9 additions and 0 deletions
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@ -44,6 +44,15 @@ jobs:
          echo "${TAGS_JSON}"
          echo "TAGS=${TAGS_JSON}" >> $GITHUB_OUTPUT

+  govulncheck:
+    name: Run govulncheck
+    runs-on: ubuntu-latest
+    steps:
+      - name: Scan for vulnerabilities in go code
+        uses: golang/govulncheck-action@v1
+        with:
+          check-latest: true
+
  scan:
    runs-on: ubuntu-latest
    needs: version