From 3e95e4f67356dc3e9bd6d54d50976ae26151d5d7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Thor=20Anker=20Kvisg=C3=A5rd=20Lange?= <tal@netic.dk>
Date: Thu, 4 Sep 2025 07:44:28 +0200
Subject: [PATCH] feat: :art: Allow for running govulncheck without it stopping
 the pipeline
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Thor Anker Kvisgård Lange <tal@netic.dk>
---
 .github/workflows/go-ci.yaml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/.github/workflows/go-ci.yaml b/.github/workflows/go-ci.yaml
index 79699db..3761edf 100644
--- a/.github/workflows/go-ci.yaml
+++ b/.github/workflows/go-ci.yaml
@@ -40,6 +40,11 @@ on:
         required: false
         default: true
         type: boolean
+      govulncheck-fail:
+        description: "Fail the workflow if govulncheck finds vulnerabilities"
+        required: false
+        default: true
+        type: boolean
 
 jobs:
   tests:
@@ -129,6 +134,7 @@ jobs:
 
       - name: Run govulncheck
         if: inputs.run-govulncheck
+        continue-on-error: ${{ !inputs.govulncheck-fail }}
         run: |
           go install golang.org/x/vuln/cmd/govulncheck@latest
           govulncheck -format text ./...