mirror of
https://github.com/wneessen/go-mail.git
synced 2024-09-20 03:02:46 +02:00
Winni Neessen
25ee875300
A new GitHub Actions workflow for Govulncheck Security Scan has been added. This workflow gets activated on every push or pull request and includes runner hardening and executing 'govulncheck' to identify potential vulnerabilities.
21 lines
No EOL
471 B
YAML
21 lines
No EOL
471 B
YAML
# SPDX-FileCopyrightText: 2022 Winni Neessen <winni@neessen.dev>
|
|
#
|
|
# SPDX-License-Identifier: CC0-1.0
|
|
|
|
name: Govulncheck Security Scan
|
|
|
|
on: [push, pull_request]
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
test:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Harden Runner
|
|
uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
|
|
with:
|
|
egress-policy: audit
|
|
- name: Run govulncheck
|
|
uses: golang/govulncheck-action@v1 |