mirror of
https://github.com/wneessen/niljson.git
synced 2024-11-22 05:30:49 +01:00
227ddf2d05
Bumps [golang/govulncheck-action](https://github.com/golang/govulncheck-action) from 1.0.3 to 1.0.4.
- [Release notes](https://github.com/golang/govulncheck-action/releases)
- [Commits](dd0578b371...b625fbe08f
)
---
updated-dependencies:
- dependency-name: golang/govulncheck-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
21 lines
No EOL
519 B
YAML
21 lines
No EOL
519 B
YAML
# SPDX-FileCopyrightText: 2022 Winni Neessen <winni@neessen.dev>
|
|
#
|
|
# SPDX-License-Identifier: CC0-1.0
|
|
|
|
name: Govulncheck Security Scan
|
|
|
|
on: [push, pull_request]
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
test:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Harden Runner
|
|
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
|
|
with:
|
|
egress-policy: audit
|
|
- name: Run govulncheck
|
|
uses: golang/govulncheck-action@b625fbe08f3bccbe446d94fbf87fcc875a4f50ee # v1.0.4 |