ci: Tier 1 OSS security scanners (CodeQL + Dependabot + govulncheck + OSV-Scanner) #1

	name: govulncheck

	on:
	push:
	branches: [master, main]
	pull_request:
	branches: [master, main]
	schedule:
	- cron: '0 6 * * *'

	permissions:
	contents: read

	jobs:
	govulncheck:
	runs-on: ubuntu-latest
	timeout-minutes: 15
	steps:
	- uses: actions/checkout@v4
	- uses: actions/setup-go@v5
	with:
	go-version-file: go.mod
	check-latest: true
	- run: go install golang.org/x/vuln/cmd/govulncheck@latest
	- run: govulncheck ./...

Provide feedback