Merge pull request #230 from wneessen/dependabot/github_actions/ossf/… #107

	# SPDX-FileCopyrightText: 2022 Winni Neessen <[email protected]>
	#
	# SPDX-License-Identifier: CC0-1.0

	name: Govulncheck Security Scan

	on: [push, pull_request]

	permissions:
	contents: read

	jobs:
	test:
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1
	with:
	egress-policy: audit
	- name: Run govulncheck
	uses: golang/govulncheck-action@3a32958c2706f7048305d5a2e53633d7e37e97d0 # v1.0.2

Provide feedback