mirror of
https://github.com/tendermint/tendermint.git
synced 2026-01-05 13:05:09 +00:00
github: remove forked version of gosec (#9629)
This commit is contained in:
William Banfield
GitHub
41
.github/workflows/gosec.yml
vendored
41
.github/workflows/gosec.yml
vendored
@@ -1,41 +0,0 @@
|
|||||||
name: Run Gosec
|
|
||||||
on:
|
|
||||||
pull_request:
|
|
||||||
paths:
|
|
||||||
- '**/*.go'
|
|
||||||
- 'go.mod'
|
|
||||||
- 'go.sum'
|
|
||||||
push:
|
|
||||||
branches:
|
|
||||||
- main
|
|
||||||
- 'feature/*'
|
|
||||||
- 'v0.37.x'
|
|
||||||
- 'v0.34.x'
|
|
||||||
paths:
|
|
||||||
- '**/*.go'
|
|
||||||
- 'go.mod'
|
|
||||||
- 'go.sum'
|
|
||||||
|
|
||||||
jobs:
|
|
||||||
Gosec:
|
|
||||||
permissions:
|
|
||||||
security-events: write
|
|
||||||
|
|
||||||
runs-on: ubuntu-latest
|
|
||||||
env:
|
|
||||||
GO111MODULE: on
|
|
||||||
steps:
|
|
||||||
- name: Checkout Source
|
|
||||||
uses: actions/checkout@v3
|
|
||||||
|
|
||||||
- name: Run Gosec Security Scanner
|
|
||||||
uses: cosmos/gosec@master
|
|
||||||
with:
|
|
||||||
# Let the report trigger a failure with the Github Security scanner features.
|
|
||||||
args: "-no-fail -fmt sarif -out results.sarif ./..."
|
|
||||||
|
|
||||||
- name: Upload SARIF file
|
|
||||||
uses: github/codeql-action/upload-sarif@v2
|
|
||||||
with:
|
|
||||||
# Path to SARIF file relative to the root of the repository
|
|
||||||
sarif_file: results.sarif
|
|
||||||
Reference in New Issue
Block a user