Move gosec to CI to test

Issacwww · Issacwww · commit 1cd1ee7ca869 · 2024-01-27T01:00:07.000-08:00
diff --git a/.github/workflows/ci-auto.yaml b/.github/workflows/ci-auto.yaml
@@ -38,3 +38,26 @@ jobs:
     steps:
     - uses: actions/checkout@v3
     - run: cd nodeadm && make test-e2e
+  dependency-review:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - uses: actions/dependency-review-action@v4
+  gosec:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - uses: securego/gosec@master
+        with:
+          args: -exclude=G101,G103,G204 nodeadm/...
+  govulncheck:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - uses: golang/govulncheck-action@v1
+        with:
+          go-version-input: 1.21.6
+          work-dir: ./nodeadm
+          go-version-file: nodeadm/go.mod
+          cache: false
+          repo-checkout: false
diff --git a/.github/workflows/dependency-review.yaml b/.github/workflows/dependency-review.yaml
@@ -1,32 +1,32 @@
-name: "Dependency Review"
-on:
-  pull_request:
-    branches:
-      - "master"
-      - "al2023"
-permissions:
-  contents: read
-jobs:
-  dependency-review:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-      - uses: actions/dependency-review-action@v4
-  gosec:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-      - uses: securego/gosec@master
-        with:
-          args: -exclude=G101,G103,G204 nodeadm/...
-  govulncheck:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-      - uses: golang/govulncheck-action@v1
-        with:
-          go-version-input: 1.21.6
-          work-dir: ./nodeadm
-          go-version-file: nodeadm/go.mod
-          cache: false
-          repo-checkout: false
+#name: "Dependency Review"
+#on:
+#  pull_request:
+#    branches:
+#      - "master"
+#      - "al2023"
+#permissions:
+#  contents: read
+#jobs:
+#  dependency-review:
+#    runs-on: ubuntu-latest
+#    steps:
+#      - uses: actions/checkout@v3
+#      - uses: actions/dependency-review-action@v4
+#  gosec:
+#    runs-on: ubuntu-latest
+#    steps:
+#      - uses: actions/checkout@v3
+#      - uses: securego/gosec@master
+#        with:
+#          args: -exclude=G101,G103,G204 nodeadm/...
+#  govulncheck:
+#    runs-on: ubuntu-latest
+#    steps:
+#      - uses: actions/checkout@v3
+#      - uses: golang/govulncheck-action@v1
+#        with:
+#          go-version-input: 1.21.6
+#          work-dir: ./nodeadm
+#          go-version-file: nodeadm/go.mod
+#          cache: false
+#          repo-checkout: false
