Catch os.ModePerm permissions in os.WriteFile #29

Summary
Jobs
- build
Run details
- Usage
- Workflow file

Workflow file for this run

.github/workflows/release.yml at 6fbd381

	name: Release
	on:
	push:
	tags:
	- 'v*'
	jobs:
	build:
	runs-on: ubuntu-latest
	env:
	GO111MODULE: on
	ACTIONS_ALLOW_UNSECURE_COMMANDS: true
	steps:
	- name: Checkout Source
	uses: actions/checkout@v4
	- name: Unshallow
	run: git fetch --prune --unshallow
	- name: Set up Go
	uses: actions/setup-go@v5
	with:
	go-version: '1.22.3'
	- name: Install Cosign
	uses: sigstore/cosign-installer@v3
	with:
	cosign-release: 'v2.2.4'
	- name: Store Cosign private key in a file
	run: 'echo "$COSIGN_KEY" > /tmp/cosign.key'
	shell: bash
	env:
	COSIGN_KEY: ${{secrets.COSIGN_KEY}}
	- name: Set up QEMU
	uses: docker/setup-qemu-action@v3
	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@v3
	- name: Login to DockerHub
	uses: docker/login-action@v3
	with:
	username: ${{secrets.DOCKER_USERNAME}}
	password: ${{secrets.DOCKER_PASSWORD}}
	- name: Generate SBOM
	uses: CycloneDX/gh-gomod-generate-sbom@v2
	with:
	version: v1
	args: mod -licenses -json -output bom.json
	- name: Docker meta
	uses: docker/metadata-action@v5
	id: meta
	with:
	images: securego/gosec
	flavor: \|
	latest=true
	tags: \|
	type=sha,format=long
	type=semver,pattern={{version}}
	- name: Release Binaries
	uses: goreleaser/goreleaser-action@v5
	with:
	version: latest
	args: release --clean
	env:
	GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
	COSIGN_PASSWORD: ${{secrets.COSIGN_PASSWORD}}
	- name: Release Docker Image
	uses: docker/build-push-action@v5
	id: relimage
	with:
	platforms: linux/amd64,linux/arm/v7,linux/arm64,linux/ppc64le
	tags: ${{steps.meta.outputs.tags}}
	labels: ${{steps.meta.outputs.labels}}
	push: true
	build-args: GO_VERSION=1.22
	- name: Sign Docker Image
	run: cosign sign --yes --key /tmp/cosign.key ${DIGEST}
	env:
	TAGS: ${{steps.meta.outputs.tags}}
	COSIGN_PASSWORD: ${{secrets.COSIGN_PASSWORD}}
	COSIGN_PRIVATE_KEY: /tmp/cosign.key
	DIGEST: ${{steps.relimage.outputs.digest}}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Catch os.ModePerm permissions in os.WriteFile #29

Workflow file

Catch os.ModePerm permissions in os.WriteFile #29

Jobs

Run details

Workflow file for this run