From ff3f5131b0044ea0753c65d312d01a921e54f870 Mon Sep 17 00:00:00 2001 From: Jacob Date: Fri, 29 Dec 2023 21:05:37 +0100 Subject: [PATCH] workflows: Modernize the setup --- .github/workflows/analysis.yml | 12 ++++++++---- .github/workflows/codeql.yml | 2 +- .github/workflows/tests.yml | 6 +++--- 3 files changed, 12 insertions(+), 8 deletions(-) diff --git a/.github/workflows/analysis.yml b/.github/workflows/analysis.yml index b5e5a3bd..ed953cef 100644 --- a/.github/workflows/analysis.yml +++ b/.github/workflows/analysis.yml @@ -10,10 +10,10 @@ jobs: fail-fast: false steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 with: persist-credentials: false - - uses: WillAbides/setup-go-faster@v1.10.1 + - uses: WillAbides/setup-go-faster@v1.13.0 with: go-version: '1.21.x' @@ -24,9 +24,10 @@ jobs: - name: Install static analysis tools run: | - go install github.com/securego/gosec/v2/cmd/gosec@v2.17.0 + go install github.com/securego/gosec/v2/cmd/gosec@v2.18.2 + go install golang.org/x/vuln/cmd/govulncheck@latest go install github.com/fzipp/gocyclo/cmd/gocyclo@v0.6.0 - go install honnef.co/go/tools/cmd/staticcheck@v0.4.5 + go install honnef.co/go/tools/cmd/staticcheck@v0.4.6 go install mvdan.cc/gofumpt@v0.5.0 - name: Vet @@ -43,3 +44,6 @@ jobs: - name: Gosec run: gosec ./... + + - name: Vulncheck + run: govulncheck ./... diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 0a0ee584..f5104006 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -25,7 +25,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Install build dependencies run: | diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 6b386f89..b7be4e6c 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -9,13 +9,13 @@ jobs: strategy: fail-fast: false matrix: - go-version: ['1.17.x', '1.21.x'] + go-version: ['1.18.x', '1.21.x'] steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 with: persist-credentials: false - - uses: WillAbides/setup-go-faster@v1.10.1 + - uses: WillAbides/setup-go-faster@v1.13.0 with: go-version: ${{ matrix.go-version }}