Merge pull request #22 from beatlabs/vulnerability-check

tomchavakis · web-flow · commit c6840a9c979e · 2020-02-02T12:56:42.000+02:00
diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml
@@ -0,0 +1,11 @@
+name: security_check
+on: push
+jobs:
+  security:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@master
+    - name: Run Snyk to check for vulnerabilities
+      uses: snyk/actions/golang@master
+      env:
+        SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
diff --git a/README.md b/README.md
@@ -1,4 +1,5 @@
-# gomodctl [![actions](https://github.com/beatlabs/gomodctl/workflows/gomodctl%20build/badge.svg)](https://github.com/beatlabs/gomodctl/actions)
+# gomodctl [![actions](https://github.com/beatlabs/gomodctl/workflows/gomodctl%20build/badge.svg)](https://github.com/beatlabs/gomodctl/actions) ![security_check](https://github.com/beatlabs/gomodctl/workflows/security_check/badge.svg)
+
 
 *gomodctl* - search, check and update go modules.
 
