Skip to content
Back to pull request #775

chore(deps): update module github.com/open-policy-agent/opa to v0.70.0 #286

Sign in to view logs

chore(deps): update module github.com/open-policy-agent/opa to v0.70.0

chore(deps): update module github.com/open-policy-agent/opa to v0.70.0 #286

Workflow file for this run

.github/workflows/scan-gosec.yaml at f7d2a5a
name: Scan CVEs - Gosec
permissions:
contents: read
on:
push:
branches:
- main
pull_request:
branches:
- main
jobs:
tests:
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
env:
GO111MODULE: on
steps:
- name: Checkout Source
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Setup golang
uses: ./.github/actions/golang
- name: Install gosec
run: |
go install github.com/securego/gosec/v2/cmd/gosec@v2.21.4
- name: Run Gosec Security Scanner
run: |
gosec -stdout -fmt sarif -out results.sarif ./...
- name: Upload artifact
uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
with:
name: SARIF file
path: results.sarif
retention-days: 5
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0
with:
sarif_file: results.sarif