From 1898f05dcd8349d1fbe6bab35c928f6d313f5d2c Mon Sep 17 00:00:00 2001
From: maze <maze@maze.io>
Date: Tue, 9 Sep 2025 11:11:25 +0200
Subject: [PATCH] Run gosec

---
 .gitea/workflows/gosec.yaml | 22 ++++++++++++++++++++++
 .gitea/workflows/test.yaml  | 10 +++++++---
 2 files changed, 29 insertions(+), 3 deletions(-)
 create mode 100644 .gitea/workflows/gosec.yaml

diff --git a/.gitea/workflows/gosec.yaml b/.gitea/workflows/gosec.yaml
new file mode 100644
index 0000000..f31a821
--- /dev/null
+++ b/.gitea/workflows/gosec.yaml
@@ -0,0 +1,22 @@
+name: Run Gosec
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  tests:
+    runs-on: ubuntu-latest
+    container:
+      image: gitea/runner-images:ubuntu-latest
+
+    steps:
+      - name: Checkout Source
+        uses: actions/checkout@v3
+      - name: Run Gosec Security Scanner
+        uses: securego/gosec@master
+        with:
+          args: ./...
\ No newline at end of file
diff --git a/.gitea/workflows/test.yaml b/.gitea/workflows/test.yaml
index a9bd82d..93e259a 100644
--- a/.gitea/workflows/test.yaml
+++ b/.gitea/workflows/test.yaml
@@ -1,12 +1,15 @@
-name: test
+name: Test
 
 on:
   push:
     branches:
       - main
+  pull_request:
+    branches:
+      - main
 
 jobs:
-  test-default:
+  tests:
     runs-on: ubuntu-latest
     container:
       image: gitea/runner-images:ubuntu-latest
@@ -77,4 +80,5 @@ jobs:
           if [ -f vault.pid ]; then
             kill $(cat vault.pid) 2>/dev/null || true
             rm -f vault.pid
-          fi
\ No newline at end of file
+          fi
+