Update .gitea/workflows/security.yaml (#7)

Reviewed-on: #7
2025-05-10 05:37:49 +00:00 · 2025-05-10 05:37:49 +00:00 · 386a766185
commit 386a766185
parent 26c50085d6
1 changed files with 4 additions and 18 deletions
--- a/.gitea/workflows/security.yaml
+++ b/.gitea/workflows/security.yaml
@ -3,23 +3,9 @@ on: [push, pull_request] #runs on pushes to any branch

 jobs:
  scans:
-    runs-on: smoke-test
+    runs-on: test
    steps:
-      - name: "clone code"
-        uses: actions/checkout@v4
-      
-      - name: "install go"
-        uses: https://code.jakeyoungdev.com/actions/install-go@v0.1.3
-        with:
-          commands: |
-              golang.org/x/vuln/cmd/govulncheck@latest
+      - uses: actions/checkout@v4

-      - name: "dependency and stdlib scan"
-        uses: https://code.jakeyoungdev.com/actions/report-vulns@master
-        with:
-          manager: go
-
-      - name: "static code analysis"
-        uses: securego/gosec@master
-        with:
-          args: ./...
+      - name: "dependency scan and static code analysis"
+        uses: https://code.jakeyoungdev.com/actions/donotpassgo@v1.0.0