Skip to content

chore(deps): bump codecov/codecov-action from 4.6.0 to 5.0.7 (#45) #95

chore(deps): bump codecov/codecov-action from 4.6.0 to 5.0.7 (#45)

chore(deps): bump codecov/codecov-action from 4.6.0 to 5.0.7 (#45) #95

Workflow file for this run

name: Check for Go vulnerabilities
# Runs https://pkg.go.dev/golang.org/x/vuln/cmd/govulncheck to proactively
# check for vulnerabilities in code packages if there were any changes made to
# any Go code or dependencies.
#
# Run `make vulncheck` from the root of the repo to run this workflow locally.
on:
pull_request:
push:
branches:
- main
- release/**
jobs:
govulncheck:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: technote-space/get-diff-action@v6
with:
PATTERNS: |
**/*.go
go.mod
go.sum
Makefile
- run: echo "GO_VERSION=$(cat .github/workflows/go-version.env | grep GO_VERSION | cut -d '=' -f2)" >> $GITHUB_ENV
- uses: actions/setup-go@v5
with:
go-version: ${{ env.GO_VERSION }}
- name: govulncheck
run: make vulncheck
if: "env.GIT_DIFF != ''"