actions/donotpassgo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 3 Wiki Activity

restructure and adding functionality

Browse Source
This commit is contained in:
jake
2026-04-03 00:22:36 -04:00
parent d26348d065
commit 4a98d66b24
6 changed files with 128 additions and 77 deletions
Download Patch File Download Diff File Expand all files Collapse all files

53
action.yaml
View File

@@ -1,27 +1,46 @@
name: "donotpassgo"
description: "general go code checks"
description: "go security checks and unit tests"
inputs:
test:
description: "runs unit tests with specified library"
test-library: #TEST_LIBRARY
description: "if set, tests are run with the specific library (standard|ginkgo)"
required: false
default: "none"
test-version: #TEST_VERSION
description: "the test library version, if the version is none or standard this value is ignored"
required: false
default: "latest"
test-fail: #TEST_FAIL
description: "override switch to prevent jobs from failing when unit tests do"
required: false
default: "yes"
static: #STATIC_FLAG
description: "if set, static code checks are ran with gosec (yes|no)"
required: false
default: "yes"
static-fail: #STATIC_FAIL
description: "override switch to prevent jobs from failing when static code analysis does"
required: false
default: "yes"
vulnerability: #VULN_CHECK
description: "if set, dependencies are scanned with govulncheck (yes|no)"
required: false
default: "yes"
vulnerability-fail: #VULN_FAIL
description: "override switch to prevent jobs from failing when vulnerability scan does"
required: false
default: "yes"
runs:
using: "composite"
steps:
- name: "install dependencies"
shell: bash
run: ${{ github.action_path }}/src/install.sh
- name: "run unit tests"
shell: bash
run: ${{ github.action_path }}/test.sh
env:
LIBRARY: ${{ inputs.test }}
run: ${{ github.action_path }}/src/test.sh
- name: "install govulncheck"
run: |
go install golang.org/x/vuln/cmd/govulncheck@latest
- name: "dependency scan"
run: govulncheck ./...
- name: "static code analysis"
uses: securego/gosec@master
with:
args: ./...
- name: "run security checks"
shell: bash
run: ${{ github.action_path }}/src/security.sh