mirror of
https://github.com/tailscale/tailscale.git
synced 2024-11-29 13:05:46 +00:00
07991dec83
Pin actions/checkout usage to latest 3.x or 4.x as appropriate. These were previously pointing to `@4` or `@3` which pull in the latest versions at these tags as they are released, with the potential to break our workflows if a breaking change or malicious version for either of these streams are released. Changing this to a pinned version also means that dependabot will keep this in the pinend version format (e.g., referencing a SHA) when it opens a PR to bump the dependency. Updates #cleanup Signed-off-by: Mario Minardi <mario@tailscale.com>
41 lines
963 B
YAML
41 lines
963 B
YAML
name: golangci-lint
|
|
on:
|
|
# For now, only lint pull requests, not the main branches.
|
|
pull_request:
|
|
|
|
# TODO(andrew): enable for main branch after an initial waiting period.
|
|
#push:
|
|
# branches:
|
|
# - main
|
|
|
|
workflow_dispatch:
|
|
|
|
permissions:
|
|
contents: read
|
|
pull-requests: read
|
|
|
|
concurrency:
|
|
group: ${{ github.workflow }}-$${{ github.head_ref || github.run_id }}
|
|
cancel-in-progress: true
|
|
|
|
jobs:
|
|
golangci:
|
|
name: lint
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
|
|
|
|
- uses: actions/setup-go@v4
|
|
with:
|
|
go-version-file: go.mod
|
|
cache: false
|
|
|
|
- name: golangci-lint
|
|
# Note: this is the 'v6.1.0' tag as of 2024-08-21
|
|
uses: golangci/golangci-lint-action@aaa42aa0628b4ae2578232a66b541047968fac86
|
|
with:
|
|
version: v1.60
|
|
|
|
# Show only new issues if it's a pull request.
|
|
only-new-issues: true
|