github.com/jfrog/jfrog-cli-platform-services@v1.2.0/.github/workflows/analysis.yml (about) 1 name: "Static Analysis" 2 on: 3 push: 4 branches: 5 - '**' 6 tags-ignore: 7 - '**' 8 pull_request: 9 jobs: 10 Static-Check: 11 runs-on: ubuntu-latest 12 steps: 13 - name: Checkout Source 14 uses: actions/checkout@v4 15 16 - name: Install Go 17 uses: actions/setup-go@v5 18 with: 19 go-version-file: go.mod 20 21 - name: Static Code Analysis 22 uses: golangci/golangci-lint-action@v5 23 with: 24 version: latest 25 26 27 Go-Sec: 28 runs-on: ubuntu-latest 29 steps: 30 - name: Checkout Source 31 uses: actions/checkout@v4 32 33 - name: Install Go 34 uses: actions/setup-go@v5 35 with: 36 go-version-file: go.mod 37 38 - name: Run Gosec Security Scanner 39 uses: securego/gosec@v2.18.0 40 with: 41 args: -exclude G204,G301,G302,G304,G306,G601,G101 -tests -exclude-dir \.*test\.* ./...