ci: add basic go-build-test github workflow (!30) · Merge requests · Cloud.gov / Cloud.gov Interface / Billing and Usage Service

Changes proposed in this pull request:

Checks out code, sets up go, installs deps, checks formatting w/ gofmt, runs go vet, runs build, runs test.

Ideally we'd incorporate Docker and/or Postgres and use the Makefile, but I'm just copying over the simple CI we were using for the GitLab Runner driver.

Things to check

For any logging statements, is there any chance that they could be logging sensitive data?
Are log statements using a logging library with a logging level set? Setting a logging level means that log statements "below" that level will not be written to the output. For example, if the logging level is set to INFO and debugging statements are written with log.debug or similar, then they won't be written to the otput, which can prevent unintentional leaks of sensitive data.

Security considerations

Adds a new CI workflow which means GitHub will be executing some new utilities (gofmt, go vet) and executing a build & test.
It should be ensured that external users cannot run insecure CI/CD workflows.

ci: add basic go-build-test github workflow

Changes proposed in this pull request:

Things to check

Security considerations

Merge request reports