mirror of
https://github.com/tailscale/tailscale.git
synced 2024-11-25 19:15:34 +00:00
2c1bbfb902
Pin actions/checkout usage to latest 5.x. These were previously pointing to `@4` which pulls in the latest v4 as they are released, with the potential to break our workflows if a breaking change or malicious version on the `@4` stream is ever pushed. Changing this to a pinned version also means that dependabot will keep this in the pinend version format (e.g., referencing a SHA) when it opens a PR to bump the dependency. The breaking change between v4 and v5 is that v5 requires Node 20 which should be a non-issue where it is used. Updates #cleanup Signed-off-by: Mario Minardi <mario@tailscale.com>
41 lines
1010 B
YAML
41 lines
1010 B
YAML
name: golangci-lint
|
|
on:
|
|
# For now, only lint pull requests, not the main branches.
|
|
pull_request:
|
|
|
|
# TODO(andrew): enable for main branch after an initial waiting period.
|
|
#push:
|
|
# branches:
|
|
# - main
|
|
|
|
workflow_dispatch:
|
|
|
|
permissions:
|
|
contents: read
|
|
pull-requests: read
|
|
|
|
concurrency:
|
|
group: ${{ github.workflow }}-$${{ github.head_ref || github.run_id }}
|
|
cancel-in-progress: true
|
|
|
|
jobs:
|
|
golangci:
|
|
name: lint
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
|
|
|
|
- uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
|
|
with:
|
|
go-version-file: go.mod
|
|
cache: false
|
|
|
|
- name: golangci-lint
|
|
# Note: this is the 'v6.1.0' tag as of 2024-08-21
|
|
uses: golangci/golangci-lint-action@aaa42aa0628b4ae2578232a66b541047968fac86
|
|
with:
|
|
version: v1.60
|
|
|
|
# Show only new issues if it's a pull request.
|
|
only-new-issues: true
|