From 2a06f215fd18a272e3077a6c7763f4c7fcb17762 Mon Sep 17 00:00:00 2001 From: Dennis Berthold Date: Fri, 24 Feb 2023 13:30:43 +0100 Subject: [PATCH 1/2] Bumped golang version from 1.17 to 1.18 to enable go modules for release action --- .github/workflows/release_version.yaml | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release_version.yaml b/.github/workflows/release_version.yaml index 5f93cec4..e11e6d53 100644 --- a/.github/workflows/release_version.yaml +++ b/.github/workflows/release_version.yaml @@ -17,12 +17,13 @@ jobs: - name: Checkout uses: actions/checkout@v2 - - uses: actions/setup-go@v2 + - name: Install Go + uses: actions/setup-go@v2 with: - go-version: '1.17' + go-version: 1.18.3 - name: Setup project - run: make clean + run: make clean gen - name: Tests - Unit run: make test From f2341dde7e07ec8d328f0fdb2a302b192fd02ad1 Mon Sep 17 00:00:00 2001 From: Dennis Berthold Date: Fri, 24 Feb 2023 14:18:48 +0100 Subject: [PATCH 2/2] Added snyk scan --- .github/workflows/snyk-scan.yaml | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 .github/workflows/snyk-scan.yaml diff --git a/.github/workflows/snyk-scan.yaml b/.github/workflows/snyk-scan.yaml new file mode 100644 index 00000000..e0d9dab9 --- /dev/null +++ b/.github/workflows/snyk-scan.yaml @@ -0,0 +1,28 @@ +name: Snyk vulnerability scan +on: + workflow_dispatch: + schedule: + - cron: '0 1 * * *' +jobs: + security: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@master + - name: Get credentials + uses: leanix/secrets-action@master + with: + secret-store-credentials: ${{ secrets.INJECTED_SECRET_STORE_CREDENTIALS }} + + - uses: actions/setup-go@master + with: + go-version: 1.18.3 + + - name: Setup project + run: make clean gen + + - name: Show current used versions + run: go list -m all + + - uses: snyk/actions/golang@master + with: + command: monitor -d --project-tags=Team=Helios,Tribe=VSM --project-name=leanix/leanix-k8s-connector \ No newline at end of file