Merge pull request #28 from wneessen/dependabot/github_actions/golang/govulncheck-action-1.0.4

Bump golang/govulncheck-action from 1.0.3 to 1.0.4
Merge pull request #29 from wneessen/dependabot/github_actions/codecov/codecov-action-4.6.0
2024-11-22 21:50:49 +01:00 · 2024-10-02 09:03:40 +02:00 · 2024-10-02 09:03:17 +02:00 · 2024-10-02 00:46:25 +00:00 · 2024-10-02 00:46:22 +00:00
2 changed files with 2 additions and 2 deletions
--- a/.github/workflows/codecov.yml
+++ b/.github/workflows/codecov.yml
@ -42,6 +42,6 @@ jobs:
      run: |
        go test -v -shuffle=on -race --coverprofile=coverage.coverprofile --covermode=atomic ./...
    - name: Upload coverage to Codecov
-      uses: codecov/codecov-action@e28ff129e5465c2c0dcc6f003fc735cb6ae0c673 # v4.5.0
+      uses: codecov/codecov-action@b9fd7d16f6d7d1b5d2bec1a2887e65ceed900238 # v4.6.0
      with:
        token: ${{ secrets.CODECOV_TOKEN }} # not required for public repos
--- a/.github/workflows/govulncheck.yml
+++ b/.github/workflows/govulncheck.yml
@ -18,4 +18,4 @@ jobs:
      with:
        egress-policy: audit
    - name: Run govulncheck
-      uses: golang/govulncheck-action@dd0578b371c987f96d1185abb54344b44352bd58 # v1.0.3
+      uses: golang/govulncheck-action@b625fbe08f3bccbe446d94fbf87fcc875a4f50ee # v1.0.4
Author	SHA1	Message	Date
Winni Neessen	9fc59f0cab	Merge pull request #28 from wneessen/dependabot/github_actions/golang/govulncheck-action-1.0.4 Some checks failed CodeQL / Analyze (push) Failing after 2s Details golangci-lint / lint (push) Failing after 2s Details Govulncheck Security Scan / test (push) Failing after 2s Details REUSE Compliance Check / test (push) Failing after 2s Details Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s Details SonarQube / Build and analyze (push) Failing after 2s Details Bump golang/govulncheck-action from 1.0.3 to 1.0.4	2024-10-02 09:03:40 +02:00
Winni Neessen	05587833bd	Merge pull request #29 from wneessen/dependabot/github_actions/codecov/codecov-action-4.6.0 Bump codecov/codecov-action from 4.5.0 to 4.6.0	2024-10-02 09:03:17 +02:00
dependabot[bot]	2c47cc79d7	Bump codecov/codecov-action from 4.5.0 to 4.6.0 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.5.0 to 4.6.0. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](`e28ff129e5...b9fd7d16f6`) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2024-10-02 00:46:25 +00:00
dependabot[bot]	227ddf2d05	Bump golang/govulncheck-action from 1.0.3 to 1.0.4 Bumps [golang/govulncheck-action](https://github.com/golang/govulncheck-action) from 1.0.3 to 1.0.4. - [Release notes](https://github.com/golang/govulncheck-action/releases) - [Commits](`dd0578b371...b625fbe08f`) --- updated-dependencies: - dependency-name: golang/govulncheck-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2024-10-02 00:46:22 +00:00