Skip to content

A GitHub Action that analyses Golang codebases for potential Nil panics, based on Uber's nilaway

License

Notifications You must be signed in to change notification settings

qbaware/nilaway-action

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Nilaway GitHub Action

GitHub Super-Linter CI CD

This is a simple GitHub Action that checks Golang codebases for potential Nil panics.

Under the hood, it uses Uber's nilaway static analysis tool. More useful information about it can be found in this Uber blog post or on their GitHub repository.

How To Use

Figure Out The Inputs

As of now, the only input is the package-to-scan variable. This is the path to the Golang package you want to analyze. E.g. ./services/backend/....

Modify Your Action

Add the following static-analysis job in your Action.

static-analysis:
  # Assuming the `build` job builds the project,
  # we define a dependency on it.
  needs: build

  runs-on: ubuntu-latest
  steps:
    - name: Checkout
      uses: actions/checkout@v3

    - name: Nil panic checks
      uses: qbaware/nilaway-action@v0
      with:
        package-to-scan: ./path/to/package/...

That's It 🎉

Sample Workflow

sample-workflow