New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Adding a nightly govulncheck workflow #1599
Merged
Merged
Changes from all commits
Commits
Show all changes
66 commits
Select commit
Hold shift + click to select a range
332e3e6
added a govulncheck workflow
dianashevchenko e41d782
Update govulncheck.yml
dianashevchenko f6a2c53
Update govulncheck.yml
dianashevchenko a804f5d
Updated workflow
dianashevchenko 22bd20b
Updated workflow
dianashevchenko 2070ce7
Updated workflow
dianashevchenko 5f288ba
Updated workflow
dianashevchenko 48d28fa
Updated workflow
dianashevchenko e77e93f
Updated workflow
dianashevchenko 7a698ce
Updated workflow
dianashevchenko b2853f4
Updated workflow
dianashevchenko 11a8ed5
Updated workflow
dianashevchenko d326506
Updated workflow
dianashevchenko 6992788
Updated workflow
dianashevchenko a38d284
Updated workflow
dianashevchenko ccb905e
Updated workflow
dianashevchenko b76dd48
Updated workflow
dianashevchenko 2ee7fec
Updated workflow
dianashevchenko b8e6719
Updated workflow
dianashevchenko 6096bc5
Updated workflow
dianashevchenko b69b45d
Updated workflow
dianashevchenko f40f2ba
Updated workflow
dianashevchenko bcf94a9
Updated workflow
dianashevchenko ace742b
Updated workflow
dianashevchenko 6f3ac19
Updated workflow
dianashevchenko 8a0ca93
Updated workflow
dianashevchenko c9ccfac
Updated workflow
dianashevchenko 7b4a7d3
Updated workflow
dianashevchenko ff22c44
Updated workflow
dianashevchenko f56214d
Updated workflow
dianashevchenko 1849d70
Updated workflow
dianashevchenko a2dbb62
Updated workflow
dianashevchenko e76f7fc
Updated workflow
dianashevchenko 357b38a
Updated workflow
dianashevchenko 539c430
Update govulncheck.yml
dianashevchenko a594af2
Updated workflow
dianashevchenko 3ad08e0
Updated workflow
dianashevchenko 2b0898e
Updated workflow
dianashevchenko 0844ee9
Updated workflow
dianashevchenko 45c809c
Updated workflow
dianashevchenko cef3924
Updated workflow
dianashevchenko 0ed59fa
Updated workflow
dianashevchenko d65cfc3
Updated workflow
dianashevchenko d82368c
Updated workflow
dianashevchenko bfcc8a0
Updated workflow
dianashevchenko c815ef9
Updated workflow
dianashevchenko caaa3c7
Updated workflow
dianashevchenko 1dea7b7
Updated workflow
dianashevchenko c946a6d
Updated workflow
dianashevchenko a3e6ede
Updated workflow
dianashevchenko ecded0e
Updated workflow
dianashevchenko ae66557
Updated workflow
dianashevchenko 1d640e1
Merge branch 'main' into shevchenko/govulncheck
dianashevchenko 264cb6c
Updated workflow
dianashevchenko 9c8d1b7
added gitlab workflow
dianashevchenko ec1b3b3
updated .gitlab-ci.yml
dianashevchenko 3765770
updated gitlab workflow
dianashevchenko a40ae9b
updated gitlab workflow
dianashevchenko 271c79e
Updated workflow
dianashevchenko ec07626
Updated workflow
dianashevchenko 0526784
Updated workflow
dianashevchenko dc6be83
Updated workflow
dianashevchenko e9178a3
Updated workflow
dianashevchenko e150f4a
Updated workflow
dianashevchenko 8099925
Updated workflow
dianashevchenko a248fd0
Updated workflow
dianashevchenko File filter
Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,38 @@ | ||
name: Nightly govulncheck | ||
on: | ||
push: | ||
branches: | ||
- main | ||
schedule: | ||
- cron: '00 00 * * *' | ||
jobs: | ||
govulncheck-tests: | ||
runs-on: ubuntu-latest | ||
steps: | ||
- uses: actions/checkout@v3 | ||
with: | ||
repository: 'DataDog/dd-trace-go' | ||
- name: Checkout Go | ||
uses: actions/setup-go@v3 | ||
with: | ||
go-version: '1.18' | ||
- name: Install govulncheck | ||
run: | | ||
go install golang.org/x/vuln/cmd/govulncheck@latest | ||
- name: Comment results | ||
id: results | ||
run: | | ||
function check_results { | ||
results=$(govulncheck $path | grep -Eo '\w+-\d+-\d+' | uniq) | ||
num=$(echo $results | wc -l) | ||
if [ $num -gt 0 ]; then | ||
echo "Found $num vulnerabilities in $path. Run 'govulncheck $path' to find out more" >> $GITHUB_STEP_SUMMARY | ||
echo "Found $num vulnerabilities in $path. Run 'govulncheck $path' to find out more" | ||
found=$(( found | 1)) | ||
fi | ||
} | ||
path=./ddtrace/... check_results | ||
path=./appsec/... check_results | ||
path=./internal/... check_results | ||
path=./profiler/... check_results | ||
exit $found | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Super nit: newline at the end