Skip to content

Vulnerability Scan

Vulnerability Scan #40

name: Vulnerability Scan
on:
pull_request:
push:
branches:
- 'master'
release:
types: [ published ]
jobs:
vulnerability:
name: Vulnerability Scan
runs-on: ubuntu-22.04
timeout-minutes: 5
permissions:
contents: read
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: actions/setup-go@v5
with:
go-version-file: go.mod
- name: Install vulnerability scanners
run: |
go install golang.org/x/vuln/cmd/govulncheck@v1
go install github.com/google/osv-scanner/cmd/osv-scanner@v1
- name: Run govulncheck
run: govulncheck ./...
- name: Run OSV Scanner
run: osv-scanner -r .