aether/vociferate
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 7 Wiki Activity

docs: record gosec and govulncheck-action version pin
Some checks failed
Push Validation / coverage-badge (push) Failing after 16s
Details
Push Validation / recommend-release (push) Has been skipped
Details

Browse Source
This commit is contained in:
Micheal Wilkinson
2026-03-21 15:00:39 +00:00
parent 32a6ded499
commit f069c116a1
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
CHANGELOG.md
View File

@@ -37,6 +37,7 @@ A `### Breaking` section is used in addition to Keep a Changelog's standard sect
- Fixed `decorate-pr/action.yml` YAML validation by extracting PR comment rendering into `decorate-pr/build-comment.sh`, removing the duplicated changelog extraction step, and correcting the gate failure output reference.
- Fixed docs-only detection in `decorate-pr` changelog gate: file list was iterated in a piped subshell so `docs_only` never propagated to the parent scope; replaced pipe with process substitution.
- Pinned `securego/gosec` and `golang/govulncheck-action` to concrete version tags (`v2.22.4` and `v1.1.4`) so self-hosted Gitea runners can resolve them via direct git clone without relying on the GitHub Actions floating-tag API.
## [1.0.2] - 2026-03-21