From 48c0bc85377b506c98c23934ebff98a90e308c28 Mon Sep 17 00:00:00 2001 From: James Wells Date: Sat, 28 Dec 2024 11:05:51 -0800 Subject: [PATCH] Rolling back gosec check to tool image. --- .forgejo/workflows/build.yaml | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/.forgejo/workflows/build.yaml b/.forgejo/workflows/build.yaml index 881a90d..3a063af 100644 --- a/.forgejo/workflows/build.yaml +++ b/.forgejo/workflows/build.yaml @@ -15,8 +15,7 @@ jobs: container: image: dragonheim/golang:latest steps: - - run: apk add --no-cache curl gpg zeromq-dev nodejs npm - - run: curl -sfL https://raw.githubusercontent.com/securego/gosec/master/install.sh | sh -s + - run: apk add --no-cache zeromq-dev nodejs npm - uses: actions/checkout@v4 - uses: actions/cache@v4 @@ -24,8 +23,8 @@ jobs: path: .cache/trivy key: tmp.woDBBj4Baw - - run: /go/bin/trivy fs --no-progress --severity CRITICAL --cache-dir .cache/trivy --exit-code 1 . - - run: /go/bin/gosec -exclude=G114 -quiet ./... + - run: trivy fs --no-progress --severity CRITICAL --cache-dir .cache/trivy --exit-code 1 . + - run: gosec -exclude=G114 -quiet ./... build_simple: needs: scan