Skip to content
πŸ› οΈ Build, Test & Scan

Feat: add production Docker Compose setup, LICENSE, and README docume… #7

# to view logs

Feat: add production Docker Compose setup, LICENSE, and README docume…

Feat: add production Docker Compose setup, LICENSE, and README docume… #7

Workflow file for this run

.github/workflows/build-test.yml at c611089
name: πŸ› οΈ Build, Test & Scan
on:
pull_request:
branches:
- main
jobs:
build-go:
name: 🐹 Build Go Project
runs-on: ubuntu-latest
steps:
- name: πŸ“₯ Checkout Code
uses: actions/checkout@v4
- name: 🐹 Set Up Go
uses: actions/setup-go@v5
with:
go-version: '1.22'
- name: πŸ› οΈ Build Go Project
run: make build
build-Svelte:
name: 🌐 Build Svelte Project
runs-on: ubuntu-latest
steps:
- name: πŸ“₯ Checkout Code
uses: actions/checkout@v4
- name: 🌐 Set Up Node.js
uses: actions/setup-node@v4
with:
node-version: '20'
- name: πŸ“¦ Install Svelte Dependencies
run: |
cd web
npm install
- name: πŸ–₯️ Build Svelte Project
run: |
cd web
npm run build
test-go:
name: βœ… Run Go Tests
runs-on: ubuntu-latest
steps:
- name: πŸ“₯ Checkout Code
uses: actions/checkout@v4
- name: 🐹 Set Up Go
uses: actions/setup-go@v5
with:
go-version: '1.22'
- name: βœ… Run Go Tests
run: make test
- name: πŸ“Š Upload Code Coverage Report
uses: actions/upload-artifact@v4
with:
name: go-code-coverage
path: coverage.out
scan-vulnerabilities:
name: πŸ” Scan for Vulnerabilities
runs-on: ubuntu-latest
steps:
- name: πŸ“₯ Checkout Code
uses: actions/checkout@v4
- name: 🐹 Set Up Go
uses: actions/setup-go@v5
with:
go-version: '1.22'
- name: πŸ” Run Golang Security Scanner
uses: securego/gosec@v2.21.4
with:
args: '-no-fail -fmt sarif -out results.sarif ./...'
- name: πŸ“ Upload SARIF Results
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: results.sarif
- name: 🌐 Set Up Node.js
uses: actions/setup-node@v4
with:
node-version: '20'
- name: πŸ“¦ Install Svelte Dependencies
run: |
cd web
npm install
- name: πŸ” Run NPM Audit
run: |
cd web
npm audit --audit-level=high || true