github
/
portainer
mirror of https://github.com/portainer/portainer
1
0
Fork 0
Code Issues Releases Wiki Activity

fix(code/security): vcs status error [EE-5062] (#8510)

pull/8462/head
Oscar Zhou 2023-02-22 10:40:09 +13:00 committed by GitHub
parent 95ac2cc4c3
commit afe6cd6df0
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 14 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
.github/workflows/nightly-security-scan.yml vendored
View File

@ -56,17 +56,20 @@ jobs:
steps: steps:
- uses: actions/checkout@master - uses: actions/checkout@master
- uses: actions/setup-go@v3
with:
go-version: '1.19.4'
- name: Download go modules - name: Download go modules
run: cd ./api && go get -t -v -d ./... run: cd ./api && go get -t -v -d ./...
- name: Run Snyk to check for vulnerabilities - name: Run Snyk to check for vulnerabilities
uses: snyk/actions/golang@master
continue-on-error: true # To make sure that artifact upload gets called continue-on-error: true # To make sure that artifact upload gets called
env: env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with: run: |
args: --file=./api/go.mod yarn global add snyk
json: true snyk test --file=./api/go.mod --json-file-output=snyk.json 2>/dev/null || :
- name: Upload go security scan result as artifact - name: Upload go security scan result as artifact
uses: actions/upload-artifact@v3 uses: actions/upload-artifact@v3

11
.github/workflows/pr-security.yml vendored
View File

@ -78,17 +78,20 @@ jobs:
steps: steps:
- uses: actions/checkout@master - uses: actions/checkout@master
- uses: actions/setup-go@v3
with:
go-version: '1.19.4'
- name: Download go modules - name: Download go modules
run: cd ./api && go get -t -v -d ./... run: cd ./api && go get -t -v -d ./...
- name: Run Snyk to check for vulnerabilities - name: Run Snyk to check for vulnerabilities
uses: snyk/actions/golang@master
continue-on-error: true # To make sure that artifact upload gets called continue-on-error: true # To make sure that artifact upload gets called
env: env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with: run: |
args: --file=./api/go.mod yarn global add snyk
json: true snyk test --file=./api/go.mod --json-file-output=snyk.json 2>/dev/null || :
- name: Upload go security scan result as artifact - name: Upload go security scan result as artifact
uses: actions/upload-artifact@v3 uses: actions/upload-artifact@v3