Skip to content

add govulncheck workflow#545

Closed
qba73 wants to merge 10 commits intonotaryproject:mainfrom
qba73:chore/govuncheck
Closed

add govulncheck workflow#545
qba73 wants to merge 10 commits intonotaryproject:mainfrom
qba73:chore/govuncheck

Conversation

@qba73
Copy link
Copy Markdown
Contributor

@qba73 qba73 commented May 7, 2025

This PR adds govulncheck workflow to run security audits.

qba73 added 2 commits May 7, 2025 20:24
@qba73
add govulncheck security audit workflow
5b5e12c 
Signed-off-by: Jakub Jarosz <jakub@jarosz.dev>
@qba73
add govulncheck security audit workflow
7decfe8 
Signed-off-by: Jakub Jarosz <jakub@jarosz.dev>
@qba73 qba73 requested a review from a user May 7, 2025 19:27
@qba73 qba73 requested review from vaninrao10 and yizha1 as code owners May 7, 2025 19:27
@codecov
Copy link
Copy Markdown

codecov Bot commented May 7, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 81.47%. Comparing base (6063ebe) to head (540d98a).

Additional details and impacted files 
@@           Coverage Diff           @@
##             main     #545   +/-   ##
=======================================
  Coverage   81.47%   81.47%           
=======================================
  Files          36       36           
  Lines        3358     3358           
=======================================
  Hits         2736     2736           
  Misses        480      480           
  Partials      142      142

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@qba73
add license header
2d4134b 
Signed-off-by: Jakub Jarosz <jakub@jarosz.dev>
@qba73 qba73 mentioned this pull request May 7, 2025
Closed
@JeyJeyGao JeyJeyGao requested a review from Copilot May 9, 2025 07:39
Copilot AI reviewed May 9, 2025
View reviewed changes
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR introduces a GitHub Actions workflow that integrates govulncheck to run periodic security audits on pull requests.

  • Adds a new workflow file (.github/workflows/audit.yml) that schedules daily vulnerability checks and enables manual workflow dispatch.

JeyJeyGao
JeyJeyGao reviewed May 9, 2025
View reviewed changes
Comment thread .github/workflows/audit.yml
qba73 and others added 4 commits May 9, 2025 10:10
@qba73
Merge branch 'main' into chore/govuncheck
f125ec4
@qba73
rename govulncheck workflow
05d693a 
Signed-off-by: Jakub Jarosz <jakub@jarosz.dev>
@qba73
fix typo
9aae6d9 
Signed-off-by: Jakub Jarosz <jakub@jarosz.dev>
@qba73
Merge branch 'main' into chore/govuncheck
ec9d370
JeyJeyGao
JeyJeyGao approved these changes May 12, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

@JeyJeyGao JeyJeyGao left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Jun 27, 2025

This PR is stale because it has been opened for 45 days with no activity. Remove stale label or comment. Otherwise, it will be closed in 30 days.

@github-actions github-actions Bot added the Stale label Jun 27, 2025
@github-actions github-actions Bot removed the Stale label Jul 3, 2025
@qba73 qba73 closed this by deleting the head repository Jul 15, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@gokarnm gokarnm Awaiting requested review from gokarnm gokarnm is a code owner

@NiazFK NiazFK Awaiting requested review from NiazFK NiazFK is a code owner

@priteshbandi priteshbandi Awaiting requested review from priteshbandi priteshbandi is a code owner

@rgnote rgnote Awaiting requested review from rgnote rgnote is a code owner

@shizhMSFT shizhMSFT Awaiting requested review from shizhMSFT shizhMSFT is a code owner

@toddysm toddysm Awaiting requested review from toddysm toddysm is a code owner

@vaninrao10 vaninrao10 Awaiting requested review from vaninrao10 vaninrao10 is a code owner

@yizha1 yizha1 Awaiting requested review from yizha1 yizha1 is a code owner

+1 more reviewer

@JeyJeyGao JeyJeyGao JeyJeyGao approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@qba73 @JeyJeyGao