Skip to content

Fix xss found by codeql #35

Fix xss found by codeql

Fix xss found by codeql #35

Workflow file for this run

################################################################################
# This file is AUTOGENERATED with <https://github.com/sapcc/go-makefile-maker> #
# Edit Makefile.maker.yaml instead. #
################################################################################
name: Checks
"on":
push:
branches:
- master
pull_request:
branches:
- '*'
permissions:
checks: write
contents: read
jobs:
checks:
name: Checks
runs-on: ubuntu-latest
steps:
- name: Check out code
uses: actions/checkout@v3
- name: Set up Go
uses: actions/setup-go@v4
with:
check-latest: true
go-version: "1.21"
- name: Dependency Review
uses: actions/dependency-review-action@v3
with:
base-ref: ${{ github.event.pull_request.base.sha || 'master' }}
deny-licenses: AGPL-1.0, AGPL-3.0, GPL-1.0, GPL-2.0, GPL-3.0, LGPL-2.0, LGPL-2.1, LGPL-3.0
fail-on-severity: moderate
head-ref: ${{ github.event.pull_request.head.sha || github.ref }}
- name: Run govulncheck
uses: golang/govulncheck-action@v1
- name: Check for spelling errors
uses: reviewdog/action-misspell@v1
with:
exclude: ./vendor/*
fail_on_error: true
github_token: ${{ secrets.GITHUB_TOKEN }}
ignore: importas
reporter: github-check
- name: Check if source code files have license header
run: |
shopt -s globstar
go install github.com/google/addlicense@latest
addlicense --check -ignore "vendor/**" -- **/*.go