Skip to content

Bump golang-jwt version to address CVE. #9752

Bump golang-jwt version to address CVE.

Bump golang-jwt version to address CVE. #9752

Workflow file for this run

name: Target & Verify
# === Triggers ===
'on':
pull_request:
types:
- edited
- labeled
- opened
- synchronize
- reopened
# === JOBS ===
jobs:
# === Target & Verify PR ===
verifypr:
name: Target & Verify PR
runs-on: ubuntu-20.04
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
JIRA_USERNAME: ${{ secrets.JIRA_EMAIL }}
JIRA_TOKEN: ${{ secrets.JIRA_TOKEN }}
concurrency:
group: ${{ github.ref }}
cancel-in-progress: true
timeout-minutes: 5
steps:
- # === Checkout code ===
name: Checkout code
uses: actions/checkout@v4
with:
ref: ${{ github.event.pull_request.head.sha }}
- # === Install Go ===
name: Install Go
uses: actions/setup-go@v5
with:
go-version: '1.22.x'
- # === Install State Tool ===
name: Install State Tool
uses: ActiveState/setup-state-tool@v1
- # === Preprocess ===
name: Preprocess
shell: bash
run: state run preprocess -v
- # === Set Target PR & FixVersion ===
name: Set Target PR and FixVersion
if: github.event.action == 'opened' || github.event.action == 'reopened'
shell: bash
run: go run scripts/ci/target-version-pr/main.go ${{ github.event.pull_request.number }}
- # === Actually Verify PR ===
name: Verify PR
shell: bash
run: go run scripts/ci/verify-pr/main.go ${{ github.event.pull_request.number }}