.github/workflows: dynamic Go versions in vuln workflow (#2800)

Swap from hard coded versions of go to dynamically acquiring
the latest stable versions from https://go.dev/dl/?mode=json

Closes #2573
This commit is contained in:
Nathan Levett 2023-10-03 04:33:23 +11:00 committed by GitHub
parent b2a6e79a5a
commit 8b587a1d4e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -3,11 +3,27 @@ name: Vulnerability Check
on: [push, pull_request] on: [push, pull_request]
jobs: jobs:
go-versions:
name: Get stable Go versions
runs-on: ubuntu-latest
outputs:
version-list: ${{ steps.go-dev-stable-versions.outputs.version-list }}
steps:
- name: List the latest stable versions of Go
id: go-dev-stable-versions
run: |
versions_json=$(curl -s https://go.dev/dl/?mode=json | jq '.[].version' | sed -e 's/^"go/"/' | jq -s -c '.')
echo "version-list=$versions_json" >> $GITHUB_OUTPUT
- name: Notify on go-dev-stable-versions
run: echo "::notice::version-list is ${{ steps.go-dev-stable-versions.outputs.version-list }}"
test: test:
needs: [go-versions]
strategy: strategy:
matrix: matrix:
os: [ubuntu-latest, macos-latest, windows-latest] os: [ubuntu-latest, macos-latest, windows-latest]
go: ['1.20.7', '1.21.0'] go: ${{ fromJson(needs.go-versions.outputs.version-list) }}
name: Vulnerability Check with Go ${{ matrix.go }} on ${{ matrix.os }} name: Vulnerability Check with Go ${{ matrix.go }} on ${{ matrix.os }}
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
env: env: