Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add gosec to GHA and in the dev flow #513

Open
ricardozanini opened this issue Aug 2, 2024 · 0 comments
Open

Add gosec to GHA and in the dev flow #513

ricardozanini opened this issue Aug 2, 2024 · 0 comments
Assignees
@ricardozanini
Labels
👷 ci enhancement New feature or request

Comments

@ricardozanini
Copy link
Member

ricardozanini commented Aug 2, 2024
edited
Loading

Description

To help avoid potential security issues, we should adopt gosec in our Makefiles and CI. It's a fair easy tool to use and implement that can help avoid headaches in the future and sustain a secure code base for the community.

Implementation ideas

  • Use GH action in the PR checks
  • Run gosec with make vet command
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ricardozanini ricardozanini

Labels
👷 ci enhancement New feature or request
Projects
🦉 KIE Podling Board
Status: 📋 Backlog
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ricardozanini