13 lines
391 B
Markdown
13 lines
391 B
Markdown
# donotpassgo
|
|
A composite workflow that runs security checks on Go projects. Golang must be installed before this workflow can run.
|
|
|
|
## Steps
|
|
### govulncheck
|
|
govulncheck is installed using 'go install' and is used to scan the application dependencies and standard library.
|
|
|
|
### gosec
|
|
gosec is used for static code analysis.
|
|
|
|
## TODO
|
|
1. Add support for unit tests
|
|
2. Add ginkgo/gomega support |