From 2498cc0e4b93b2b561233ff18ad248f6161d3ed9 Mon Sep 17 00:00:00 2001
From: Mihai Todor <todormihai@gmail.com>
Date: Thu, 13 Oct 2022 00:53:19 +0100
Subject: [PATCH] Add govulncheck linter

This is temporary while https://github.com/golangci/golangci-lint/issues/3094
is being worked on here: https://github.com/golangci/golangci-lint/pull/3199
---
 .github/workflows/test.yml | 13 +++++++++++++
 go.mod                     |  2 +-
 go.sum                     |  3 ++-
 3 files changed, 16 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 84e56a35cf..0989fc4445 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -86,6 +86,11 @@ jobs:
       CGO_ENABLED: 0
     steps:
 
+    - name: Install Go
+      uses: actions/setup-go@v2
+      with:
+        go-version: 1.19.x
+
     - name: Checkout code
       uses: actions/checkout@v2
 
@@ -94,3 +99,11 @@ jobs:
       with:
         version: latest
         args: --timeout 30m cmd/... internal/... public/...
+
+    # TODO: Remove this after https://github.com/golangci/golangci-lint/issues/3094 is addressed
+    - name: Get govulncheck
+      run: go install golang.org/x/vuln/cmd/govulncheck@latest
+
+    - name: Run govulncheck
+      # Suppress errors since it also reports vulnerabilities in the standard library
+      run: govulncheck ./... || true
diff --git a/go.mod b/go.mod
index 222fe106f1..fd098fdd14 100644
--- a/go.mod
+++ b/go.mod
@@ -110,7 +110,7 @@ require (
 	golang.org/x/net v0.0.0-20220927171203-f486391704dc
 	golang.org/x/oauth2 v0.0.0-20220909003341-f21342109be1
 	golang.org/x/sync v0.0.0-20220923202941-7f9b1623fab7
-	golang.org/x/text v0.3.7
+	golang.org/x/text v0.3.8
 	google.golang.org/api v0.97.0
 	google.golang.org/grpc v1.49.0
 	gopkg.in/natefinch/lumberjack.v2 v2.0.0
diff --git a/go.sum b/go.sum
index 09314df04c..434f6b951c 100644
--- a/go.sum
+++ b/go.sum
@@ -1469,8 +1469,9 @@ golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
+golang.org/x/text v0.3.8 h1:nAL+RVCQ9uMn3vJZbV+MRnydTJFPf8qqY42YiA6MrqY=
+golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=