Skip to content

deps: bump actions/dependency-review-action from 4.3.4 to 4.4.0 #255

deps: bump actions/dependency-review-action from 4.3.4 to 4.4.0

deps: bump actions/dependency-review-action from 4.3.4 to 4.4.0 #255

Workflow file for this run

name: vuln
permissions: {} # no need any permissions
on:
push:
branches: [main]
pull_request:
branches: [main]
schedule:
- cron: '0 10 * * 1' # run "At 10:00 on Monday"
workflow_call:
jobs:
run:
name: Vuln
runs-on: ubuntu-latest
timeout-minutes: 5
strategy:
fail-fast: true
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
with:
egress-policy: audit
- name: Install Go
uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
with:
go-version: 'stable'
check-latest: true
- name: Checkout
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
- name: Install govulncheck
run: go install golang.org/x/vuln/cmd/[email protected]
- name: Run govulncheck
run: govulncheck -test ./...