diff --git a/.github/workflows/gochecks.yml b/.github/workflows/gochecks.yml new file mode 100644 index 0000000..4f6730f --- /dev/null +++ b/.github/workflows/gochecks.yml @@ -0,0 +1,27 @@ +name: go-checks + +on: + workflow_call: + push: + branches: [main] + pull_request: + # The branches below must be a subset of the branches above + branches: [main] + +jobs: + check: + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v3 + - name: Setup Go environment + uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # pin@v4 + with: + go-version: '1.21' + check-latest: true + - name: Run Vulncheck + run: | + go install golang.org/x/vuln/cmd/govulncheck@latest + govulncheck ./... + - name: Run golangci-lint + uses: golangci/golangci-lint-action@3cfe3a4abbb849e10058ce4af15d205b6da42804 # pin@v3