From e523171a6bfceaa1ce8fb8859e0432923b496d50 Mon Sep 17 00:00:00 2001 From: Faye Amacker <33205765+fxamacker@users.noreply.github.com> Date: Sat, 15 Jul 2023 09:54:17 -0500 Subject: [PATCH 1/2] Bump CI govulncheck to v1.0.0 --- .github/workflows/govulncheck.yml | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/.github/workflows/govulncheck.yml b/.github/workflows/govulncheck.yml index 4fc3584e..73540cde 100644 --- a/.github/workflows/govulncheck.yml +++ b/.github/workflows/govulncheck.yml @@ -45,7 +45,6 @@ jobs: go-version: 1.20.x check-latest: true - name: Install latest from golang.org - run: go install golang.org/x/vuln/cmd/govulncheck@b43f5afc876383b2adc0ec0d3ff1998fe58eeda0 # v0.1.0 - - name: Run govulncheck - # Use -v flag to print a full call stack for each vulnerability found. - run: govulncheck -v ./... + run: go install golang.org/x/vuln/cmd/govulncheck@f69de671333b611ab6b6f21f8ff0ab53f6d96c61 # v1.0.0 + - name: Run govulncheck + run: govulncheck -show=traces ./... From 30fae529b77a497c5b561f69ff06404e0bcbf6df Mon Sep 17 00:00:00 2001 From: Faye Amacker <33205765+fxamacker@users.noreply.github.com> Date: Sat, 15 Jul 2023 12:04:25 -0500 Subject: [PATCH 2/2] Update govulncheck.yml Remove scheduled trigger. --- .github/workflows/govulncheck.yml | 3 --- 1 file changed, 3 deletions(-) diff --git a/.github/workflows/govulncheck.yml b/.github/workflows/govulncheck.yml index 73540cde..ade2d1f4 100644 --- a/.github/workflows/govulncheck.yml +++ b/.github/workflows/govulncheck.yml @@ -9,9 +9,6 @@ permissions: {} on: workflow_dispatch: - schedule: - # Run at least once daily because vulnerability database might be updated. - - cron: '30 15 * * *' pull_request: paths: - '**'