move security audit to separate workflow (#202)

bitfield · Jun 7, 2024 · b66af95 · b66af95
1 parent 3b43536
commit b66af95
Show file tree

Hide file tree

Showing 3 changed files with 14 additions and 5 deletions.
diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
@@ -0,0 +1,11 @@
+name: Security audit
+on:
+  schedule:
+    - cron: '0 0 * * *'
+
+jobs:
+  security_audit:
+    runs-on: ubuntu-latest
+    steps:
+        - uses: golang/govulncheck-action@v1
+
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -14,10 +14,7 @@ jobs:
           go-version: ${{ matrix.go-version }}
       - uses: actions/checkout@v3
       - run: go test ./...
-  govulncheck:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: golang/govulncheck-action@v1
+
   gocritic:
     runs-on: ubuntu-latest
     steps:

diff --git a/README.md b/README.md
@@ -1,7 +1,8 @@
 [![Go Reference](https://pkg.go.dev/badge/github.com/bitfield/script.svg)](https://pkg.go.dev/github.com/bitfield/script)
 [![Go Report Card](https://goreportcard.com/badge/github.com/bitfield/script)](https://goreportcard.com/report/github.com/bitfield/script)
 [![Mentioned in Awesome Go](https://awesome.re/mentioned-badge-flat.svg)](https://github.com/avelino/awesome-go)
-![Tests](https://github.com/bitfield/script/actions/workflows/test.yml/badge.svg)
+![CI](https://github.com/bitfield/script/actions/workflows/ci.yml/badge.svg)
+![Audit](https://github.com/bitfield/script/actions/workflows/audit.yml/badge.svg)
 
 ```go
 import "github.com/bitfield/script"