Skip to content

test: add integration tests for flag/config/env precedence #91

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
telegrapher merged 5 commits into from
Mar 3, 2026
Merged

test: add integration tests for flag/config/env precedence #91

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
e6bcd46
Replace interface{} with any across ims/ package
telegrapher Mar 2, 2026
7162296
test: add integration tests for flag/config/env precedence
telegrapher Mar 3, 2026
da9d6f7
Merge branch 'main' into test/integration-tests-flag-config-env-prece…
telegrapher Mar 3, 2026
9467aa0
refactor: simplify requestLog to single captured request
telegrapher Mar 3, 2026
039949c
ci: consolidate govulncheck into CI workflow
telegrapher Mar 3, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
49 changes: 46 additions & 3 deletions .github/workflows/ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,10 +6,13 @@ on:
branches: ['**']
pull_request:
branches: [main]
# Weekly govulncheck scan catches new vulnerabilities even when the code hasn't changed.
schedule:
- cron: '0 9 * * 1' # Every Monday at 9:00 UTC

# Read-only access is sufficient for running tests and linting.
permissions:
contents: read
issues: write

jobs:
# Run the full test suite with race detection and generate a coverage report.
Expand Down Expand Up @@ -56,7 +59,7 @@ jobs:
# golangci-lint v2 runs 50+ linters in a single pass.
# Without a .golangci.yml config file it uses sensible defaults.
- name: Run golangci-lint
uses: golangci/golangci-lint-action@v9
uses: golangci/golangci-lint-action@v7
with:
version: v2.10.1

Expand All @@ -79,6 +82,46 @@ jobs:

# Validate .goreleaser.yml so config errors are caught before tagging a release.
- name: Verify GoReleaser config
uses: goreleaser/goreleaser-action@v7
uses: goreleaser/goreleaser-action@v6
with:
args: check

# Scan dependencies for known vulnerabilities using Go's official scanner.
# See https://pkg.go.dev/golang.org/x/vuln/cmd/govulncheck
govulncheck:
name: govulncheck
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v6
with:
persist-credentials: false

- uses: actions/setup-go@v6
with:
go-version-file: go.mod

- uses: golang/govulncheck-action@v1
with:
go-version-file: go.mod

# Open a GitHub issue when the scheduled scan finds vulnerabilities.
# Only runs on cron failures — PR and push failures are visible in the checks UI.
notify:
needs: govulncheck
runs-on: ubuntu-latest
if: failure() && github.event_name == 'schedule'
steps:
- uses: actions/github-script@v8
with:
script: |
await github.rest.issues.create({
owner: context.repo.owner,
repo: context.repo.repo,
title: 'govulncheck: vulnerability detected',
body: [
'The weekly [govulncheck scan](' + context.serverUrl + '/' + context.repo.owner + '/' + context.repo.repo + '/actions/runs/' + context.runId + ') found vulnerabilities.',
'',
'Review the workflow run and update affected dependencies.'
].join('\n'),
labels: ['security']
});
57 changes: 0 additions & 57 deletions .github/workflows/govulncheck.yml
View file
Open in desktop

This file was deleted.

Loading
Loading