ci: add govulncheck (#456)

This is intended to catch low-hanging fruit. Signed-off-by: Xe Iaso <me@xeiaso.net>
2025-05-06 10:07:55 -04:00 · 2025-05-06 10:07:55 -04:00 · 16412a8bf9
commit 16412a8bf9
parent 2e9b18a510
5 changed files with 16 additions and 2 deletions
--- a/go.mod
+++ b/go.mod
@ -47,8 +47,10 @@ require (
 	golang.org/x/mod v0.24.0 // indirect
 	golang.org/x/sync v0.13.0 // indirect
 	golang.org/x/sys v0.32.0 // indirect
+	golang.org/x/telemetry v0.0.0-20240522233618-39ace7a40ae7 // indirect
 	golang.org/x/text v0.24.0 // indirect
 	golang.org/x/tools v0.32.0 // indirect
+	golang.org/x/vuln v1.1.4 // indirect
 	google.golang.org/genproto/googleapis/api v0.0.0-20240826202546-f6391c0de4c7 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240826202546-f6391c0de4c7 // indirect
 	google.golang.org/protobuf v1.36.5 // indirect
@ -61,5 +63,6 @@ tool (
 	github.com/a-h/templ/cmd/templ
 	golang.org/x/tools/cmd/goimports
 	golang.org/x/tools/cmd/stringer
+	golang.org/x/vuln/cmd/govulncheck
 	honnef.co/go/tools/cmd/staticcheck
 )