v1.0.0

What's Changed

💥⚠️ This release contains breaking changes that are not backwards compatible with v0 version of govulncheck. So if you upgrade make sure to select 1.0 (or above). The defaults of the action also have been updated to reflect this.

• 💥 👽 Adjusted code to vulncheck 1.0 (breaks with v0 code) by @Templum in #48

Full Changelog: v0.11.0...v1.0.0

v0.10.1

What's Changed

• ⬆️ Bump golang.org/x/oauth2 from 0.6.0 to 0.7.0 by @dependabot in #35
• 👽 Added support for the new JSON Format by @Templum in #34
• ⬆️ Bump github.com/rs/zerolog from 1.29.0 to 1.29.1 by @dependabot in #36
• ⬆️ 📌 Update & Pinned govulncheck to 0.1.0 by @Templum in #38

Full Changelog: v0.10.0...v0.10.1

v0.10.0

🚨 Please be aware that yesterdays release of govulncheck introduced a change to the json report format. This caused the action to break, as govulncheck is still in v0 phase such changes can be expected. In order to address them properly I decided to set the default govulncheck version to the last known working version (at release time this is 0.0.0-20230320232729-bfc1eaef17a4). 🚨

Please avoid setting vulncheck-version: latest as this could break on new releases.

What's Changed

• ⬆️ Bump github.com/rs/zerolog from 1.28.0 to 1.29.0 by @dependabot in #23
• ⬆️ Updated Golang to 1.20.0 by @Templum in #25
• ⬆️ Bump golang.org/x/oauth2 from 0.0.0-20220909003341-f21342109be1 to 0.5.0 by @dependabot in #26
• ⬆️ Bump github.com/stretchr/testify from 1.8.1 to 1.8.2 by @dependabot in #27
• ⬆️ Bump golang.org/x/oauth2 from 0.5.0 to 0.6.0 by @dependabot in #28
• ⬆️ Bump actions/setup-go from 3 to 4 by @dependabot in #29
• ⬆️ Bump github.com/owenrumney/go-sarif/v2 from 2.1.2 to 2.1.3 by @dependabot in #30
• 🐛 👽 Updated action to work with latest json format by @Templum in #32

Full Changelog: v0.0.9...v0.10.0

v0.0.9

What's Changed

• 📝 Added New Configuration Examples by @Templum in #18
• ✨ Implement support for private deps via GOPRIVATE & GH PAT by @Templum in #21
• 👷 Implement Integration Test by @Templum in #22

Full Changelog: v0.0.8...v0.0.9

v0.0.8

What's Changed

• ✨ 🐛 Reading Go Runtime Details from GOENV by @Templum in #17

Full Changelog: v0.0.7...v0.0.8

v0.0.7

What's Changed

🚨 Please be aware this Release includes a fix in response to an internal change in the govulncheck CLI, the JSON Report format was drastically changed which broke this action. 🚨

• 👽 ✨ Adjusted Action to work with new Report Format by @Templum in #15

Full Changelog: v0.0.6...v0.0.7

v0.0.6

What's Changed

• 👷 ✅ Added CI Pipeline & Unit Tests by @Templum in #5
• 📝 Adding/Fixing Links for Badge by @Templum in #6
• ⬆️ Bump github.com/google/go-github/v47 from 47.0.0 to 47.1.0 by @dependabot in #7
• 🐛 Decoupled Debug Level Logs by @Templum in #8
• ⬆️ Bump github.com/stretchr/testify from 1.8.0 to 1.8.1 by @dependabot in #9
• ✨ Implemented Strict Mode Support by @Templum in #12
• ✨ Allow skipping Sarif Upload by @Templum in #13

New Contributors

• @dependabot made their first contribution in #7

Full Changelog: v0.0.5...v0.0.6

v0.0.5

What's Changed

• 🐛 ✨ Implemented proper Resolution of Callsites by @Templum in #4

Full Changelog: v0.0.4...v0.0.5

v0.0.4

What's Changed

• ✨ Allowing better configuration for the action by @Templum in #3

Full Changelog: v0.0.3...v0.0.4

v0.0.3

What's Changed

• 🐛 Fixed issues with action by @Templum in #1

New Contributors

• @Templum made their first contribution in #1

Full Changelog: v0.0.1...v0.0.3