Nancy GitHub Actions play project

February 21, 2023 ยท View on GitHub

gh-action-test

Nancy GitHub Actions play project

Runs the nancy-github-action.

You can run a local build using the act project. e.g.:

$ act
[Go/Build] ๐Ÿš€  Start image=catthehacker/ubuntu:act-latest
[Go/Build]   ๐Ÿณ  docker run image=catthehacker/ubuntu:act-latest entrypoint=["/usr/bin/tail" "-f" "/dev/null"] cmd=[]
[Go/Build]   ๐Ÿณ  docker cp src=/Users/bhamail/sonatype/community/go/nancy-gh-action-test/. dst=/github/workspace
[Go/Build] โญ  Run Set up Go 1.x
[Go/Build]   โ˜  git clone 'https://github.com/actions/setup-go' # ref=v2
[Go/Build]   ๐Ÿณ  docker cp src=/Users/bhamail/.cache/act/actions-setup-go@v2 dst=/actions/
| Setup go stable version spec ^1.16
[Go/Build]   ๐Ÿ’ฌ  ::debug::isExplicit: 
[Go/Build]   ๐Ÿ’ฌ  ::debug::explicit? false
...
| โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”“
| โ”ƒ Summary                     โ”ƒ
| โ”ฃโ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”ณโ”โ”โ”โ”ซ
| โ”ƒ Audited Dependencies    โ”ƒ 0 โ”ƒ
| โ”ฃโ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ•‹โ”โ”โ”โ”ซ
| โ”ƒ Vulnerable Dependencies โ”ƒ 0 โ”ƒ
| โ”—โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”ปโ”โ”โ”โ”›
[Go/Build]   โœ…  Success - Scan with specific Nancy version

ToDo

  • Done: Replace the commit hash below with a reference to either a release version or the main branch in .github/workflows/go.yml: 
    uses: sonatype-nexus-community/nancy-github-action@811b6670e343fc48fde273906404adaac9bd3885