Compare commits
2 Commits
2177dae15f
...
f9c57f34d0
| Author | SHA1 | Date | |
|---|---|---|---|
|
f9c57f34d0 | ||
|
|
5793a58888 |
@@ -50,11 +50,15 @@ jobs:
|
||||
|
||||
- name: Run gosec security analysis
|
||||
uses: securego/gosec@v2.22.4
|
||||
env:
|
||||
GOTOOLCHAIN: auto
|
||||
with:
|
||||
args: ./...
|
||||
|
||||
- name: Run govulncheck
|
||||
uses: golang/govulncheck-action@v1.0.4
|
||||
env:
|
||||
GOTOOLCHAIN: auto
|
||||
with:
|
||||
go-package: ./...
|
||||
cache: true
|
||||
|
||||
@@ -38,6 +38,7 @@ A `### Breaking` section is used in addition to Keep a Changelog's standard sect
|
||||
- Fixed `decorate-pr/action.yml` YAML validation by extracting PR comment rendering into `decorate-pr/build-comment.sh`, removing the duplicated changelog extraction step, and correcting the gate failure output reference.
|
||||
- Fixed docs-only detection in `decorate-pr` changelog gate: file list was iterated in a piped subshell so `docs_only` never propagated to the parent scope; replaced pipe with process substitution.
|
||||
- Pinned `securego/gosec` and `golang/govulncheck-action` to concrete version tags (`v2.22.4` and `v1.0.4`) so self-hosted Gitea runners can resolve them via direct git clone without relying on the GitHub Actions floating-tag API.
|
||||
- Added `GOTOOLCHAIN: auto` environment variable to `gosec` and `govulncheck-action` steps in `push-validation` and `prepare-release` workflows to prevent Go toolchain version mismatches inside the act runner container.
|
||||
|
||||
## [1.0.2] - 2026-03-21
|
||||
|
||||
|
||||
Reference in New Issue
Block a user