From b66af956f41c1be08bca07ab0a2dd841bd0a2e72 Mon Sep 17 00:00:00 2001 From: John Arundel Date: Fri, 7 Jun 2024 18:56:31 +0100 Subject: [PATCH] move security audit to separate workflow (#202) --- .github/workflows/audit.yml | 11 +++++++++++ .github/workflows/ci.yml | 5 +---- README.md | 3 ++- 3 files changed, 14 insertions(+), 5 deletions(-) create mode 100644 .github/workflows/audit.yml diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml new file mode 100644 index 0000000..48976b1 --- /dev/null +++ b/.github/workflows/audit.yml @@ -0,0 +1,11 @@ +name: Security audit +on: + schedule: + - cron: '0 0 * * *' + +jobs: + security_audit: + runs-on: ubuntu-latest + steps: + - uses: golang/govulncheck-action@v1 + \ No newline at end of file diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 98a1541..384f417 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -14,10 +14,7 @@ jobs: go-version: ${{ matrix.go-version }} - uses: actions/checkout@v3 - run: go test ./... - govulncheck: - runs-on: ubuntu-latest - steps: - - uses: golang/govulncheck-action@v1 + gocritic: runs-on: ubuntu-latest steps: diff --git a/README.md b/README.md index a06a70c..22a50ee 100644 --- a/README.md +++ b/README.md @@ -1,7 +1,8 @@ [![Go Reference](https://pkg.go.dev/badge/github.com/bitfield/script.svg)](https://pkg.go.dev/github.com/bitfield/script) [![Go Report Card](https://goreportcard.com/badge/github.com/bitfield/script)](https://goreportcard.com/report/github.com/bitfield/script) [![Mentioned in Awesome Go](https://awesome.re/mentioned-badge-flat.svg)](https://github.com/avelino/awesome-go) -![Tests](https://github.com/bitfield/script/actions/workflows/test.yml/badge.svg) +![CI](https://github.com/bitfield/script/actions/workflows/ci.yml/badge.svg) +![Audit](https://github.com/bitfield/script/actions/workflows/audit.yml/badge.svg) ```go import "github.com/bitfield/script"