mirror of
https://github.com/SSLMate/certspotter.git
synced 2025-06-27 10:15:33 +02:00
b649b399e4
It's a security minefield. Thanks to caching of the build environment, not even read-only actions are safe.
36 lines
705 B
YAML
36 lines
705 B
YAML
name: Test and lint Go Code
|
|
|
|
on:
|
|
push:
|
|
schedule:
|
|
- cron: '42 9 * * *' # Runs daily at 09:42 UTC
|
|
workflow_dispatch: # Allows manual triggering
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
test:
|
|
name: Test
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- name: Checkout repository
|
|
uses: actions/checkout@v4
|
|
with:
|
|
fetch-depth: 0
|
|
|
|
- name: Set up Go
|
|
uses: actions/setup-go@v5
|
|
with:
|
|
go-version-file: go.mod
|
|
|
|
- name: Run tests
|
|
run: CGO_ENABLED=1 go test -race ./...
|
|
|
|
- name: Install staticcheck
|
|
run: go install honnef.co/go/tools/cmd/staticcheck@latest
|
|
|
|
- name: Run staticcheck
|
|
run: staticcheck ./...
|