name: "donotpassgo"
description: "general go code checks"
inputs:
  test:
    description: "runs unit tests with specified library"
    required: false
    default: "none"
runs:
  using: "composite"
  steps:
    - name: "run unit tests"
      shell: bash
      run: ${{ github.action_path }}/test.sh
      env:
        LIBRARY: ${{ inputs.test }}

    - name: "install govulncheck"
      run: |
        go install golang.org/x/vuln/cmd/govulncheck@latest
      
    - name: "dependency scan"
      run: govulncheck ./...

    - name: "static code analysis"
      uses: securego/gosec@master
      with:
        args: ./...