aether/vociferate
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 7 Wiki Activity

Compare commits

base: aether:2177dae15f0c93cdfe6176e509887d7bb8e40e4c
Branches Tags
aether:main
aether:v1.2.0 aether:v1.1.0 aether:v1.0.2 aether:v1.0.1 aether:v1.0.0 aether:v0.2.0 aether:v0.1.0
..
compare: aether:f9c57f34d0f9a5346eab1b3c849805f0522700cf
Branches Tags
aether:main
aether:v1.2.0 aether:v1.1.0 aether:v1.0.2 aether:v1.0.1 aether:v1.0.0 aether:v0.2.0 aether:v0.1.0

2 Commits
2177dae15f ... f9c57f34d0

Author SHA1 Message Date
Micheal Wilkinson
f9c57f34d0 docs: record GOTOOLCHAIN fix
Some checks failed
Push Validation / coverage-badge (push) Failing after 27s
Details
Push Validation / recommend-release (push) Has been skipped
Details
2026-03-21 15:10:44 +00:00
Micheal Wilkinson
5793a58888 fix(ci): add GOTOOLCHAIN=auto to gosec and govulncheck steps 2026-03-21 15:10:44 +00:00
2 changed files with 5 additions and 0 deletions
Expand all files Collapse all files

4
.gitea/workflows/prepare-release.yml
View File

@@ -50,11 +50,15 @@ jobs:
- name: Run gosec security analysis - name: Run gosec security analysis
uses: securego/gosec@v2.22.4 uses: securego/gosec@v2.22.4
env:
GOTOOLCHAIN: auto
with: with:
args: ./... args: ./...
- name: Run govulncheck - name: Run govulncheck
uses: golang/govulncheck-action@v1.0.4 uses: golang/govulncheck-action@v1.0.4
env:
GOTOOLCHAIN: auto
with: with:
go-package: ./... go-package: ./...
cache: true cache: true

1
CHANGELOG.md
View File

@@ -38,6 +38,7 @@ A `### Breaking` section is used in addition to Keep a Changelog's standard sect
- Fixed `decorate-pr/action.yml` YAML validation by extracting PR comment rendering into `decorate-pr/build-comment.sh`, removing the duplicated changelog extraction step, and correcting the gate failure output reference. - Fixed `decorate-pr/action.yml` YAML validation by extracting PR comment rendering into `decorate-pr/build-comment.sh`, removing the duplicated changelog extraction step, and correcting the gate failure output reference.
- Fixed docs-only detection in `decorate-pr` changelog gate: file list was iterated in a piped subshell so `docs_only` never propagated to the parent scope; replaced pipe with process substitution. - Fixed docs-only detection in `decorate-pr` changelog gate: file list was iterated in a piped subshell so `docs_only` never propagated to the parent scope; replaced pipe with process substitution.
- Pinned `securego/gosec` and `golang/govulncheck-action` to concrete version tags (`v2.22.4` and `v1.0.4`) so self-hosted Gitea runners can resolve them via direct git clone without relying on the GitHub Actions floating-tag API. - Pinned `securego/gosec` and `golang/govulncheck-action` to concrete version tags (`v2.22.4` and `v1.0.4`) so self-hosted Gitea runners can resolve them via direct git clone without relying on the GitHub Actions floating-tag API.
- Added `GOTOOLCHAIN: auto` environment variable to `gosec` and `govulncheck-action` steps in `push-validation` and `prepare-release` workflows to prevent Go toolchain version mismatches inside the act runner container.
## [1.0.2] - 2026-03-21 ## [1.0.2] - 2026-03-21