Skip to content

Updates main to use Viper Command #263

Updates main to use Viper Command

Updates main to use Viper Command #263

Workflow file for this run

name: Go Build
permissions:
contents: read
on:
push:
branches: ['develop']
pull_request:
branches: ['develop']
jobs:
Setup:
if: github.event.pull_request.draft == false
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Set up Go
uses: actions/setup-go@v4
with:
go-version: stable
- name: Install Dependencies
run: go mod download
Scan:
needs: Setup
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
actions: read
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: Download manager
uses: actions/download-artifact@v3
- name: Scan with Trivy
uses: aquasecurity/trivy-action@v0.20.0
with:
scan-type: 'fs'
format: 'sarif'
output: 'trivy-results.sarif'
severity: 'MEDIUM,HIGH,CRITICAL'
- name: Upload scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: 'trivy-results.sarif'
Build:
needs: Setup
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Set up Go
uses: actions/setup-go@v4
with:
go-version: stable
- name: Build
run: make build
- name: Upload manager
uses: actions/upload-artifact@v3
with:
name: konfirm
path: konfirm
retention-days: 1