chore(deps): bump golang.org/x/term from 0.31.0 to 0.41.0 in the go-dependencies group #34
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| pull_request: | |
| branches: [main] | |
| permissions: | |
| contents: read | |
| jobs: | |
| test: | |
| name: Test | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: actions/setup-go@v6 | |
| with: | |
| go-version-file: go.mod | |
| cache: true | |
| - name: Run tests | |
| run: go test -race ./... | |
| lint: | |
| name: Lint | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| steps: | |
| - uses: actions/checkout@v4 | |
| # golangci-lint-action manages its own Go cache; disable setup-go caching to avoid conflicts | |
| - uses: actions/setup-go@v6 | |
| with: | |
| go-version-file: go.mod | |
| cache: false | |
| - uses: golangci/golangci-lint-action@v9 | |
| with: | |
| version: v2.10.1 | |
| security: | |
| name: Security | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: actions/setup-go@v6 | |
| with: | |
| go-version-file: go.mod | |
| cache: true | |
| - name: Verify module checksums | |
| run: go mod verify | |
| - name: Install govulncheck | |
| run: go install golang.org/x/vuln/cmd/govulncheck@latest | |
| - name: Run govulncheck | |
| run: govulncheck ./... | |
| - name: Install gosec | |
| # Pin to a specific version — update manually or watch https://github.com/securego/gosec/releases | |
| run: go install github.com/securego/gosec/v2/cmd/gosec@v2.22.11 | |
| - name: Run gosec | |
| run: gosec -severity medium -confidence medium -exclude=G204,G301,G302,G304,G306 ./... | |