adding workflow

2025-04-24 13:29:11 -04:00 · 2025-04-24 13:29:11 -04:00 · 1e946bdf2f
commit 1e946bdf2f
parent 13d3b2cef3
1 changed files with 25 additions and 0 deletions
--- a/.gitea/workflows/security.yaml
+++ b/.gitea/workflows/security.yaml
@ -0,0 +1,25 @@
+name: "code scans"
+on: push #runs on pushes to any branch
+
+jobs:
+  scans:
+    runs-on: smoke-test
+    steps:
+      - name: "clone code"
+        uses: actions/checkout@v4
+      
+      - name: "install go"
+        uses: https://code.jakeyoungdev.com/actions/install-go@master
+        with:
+            commands: |
+                golang.org/x/vuln/cmd/govulncheck@latest
+
+      - name: "dependency and stdlib scan"
+        uses: https://code.jakeyoungdev.com/actions/report-vulns@master
+        with:
+          manager: go
+    
+      - name: "static code analysis"
+        uses: securego/gosec@v2.22.3
+        with:
+          args: ./...