Skip to content

🌱 Bump github.com/ossf/scorecard/v4 from 4.11.0 to 4.12.0 #1329

🌱 Bump github.com/ossf/scorecard/v4 from 4.11.0 to 4.12.0

🌱 Bump github.com/ossf/scorecard/v4 from 4.11.0 to 4.12.0 #1329

Workflow file for this run

name: CI-Tests
on:
push:
branches: [ main ]
pull_request:
branches: [ main ]
permissions: read-all
jobs:
unit-tests:
name: Run unit tests
runs-on: ${{ matrix.os }}
strategy:
matrix:
os: [ ubuntu-latest ]
permissions:
id-token: write # Needed to pick up on signing with a GitHub workflow identity.
steps:
- uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
- uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
with:
go-version-file: go.mod
cache: true
- name: Run Go tests
# cannot run tests with race because we are mutating state (setting ENV variables)
run: GITHUB_AUTH_TOKEN=${{ secrets.GITHUB_TOKEN }} go test -covermode=atomic -coverprofile=unit-coverage.out ./...
- name: Upload codecoverage
uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d # v3.1.4
with:
files: ./unit-coverage.out
verbose: true
verify:
name: Run verify
runs-on: ${{ matrix.os }}
strategy:
matrix:
os: [ ubuntu-latest ]
steps:
- uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
- uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
with:
go-version-file: go.mod
cache: true
- name: Run Go verify
run: |
go mod tidy && go mod verify
git diff --exit-code