From f12794c7c82b987ed72ac05a53efa183495e626d Mon Sep 17 00:00:00 2001
From: Viraj <77448246+virajsabhaya23@users.noreply.github.com>
Date: Mon, 20 Oct 2025 19:04:42 +0000
Subject: [PATCH] uploaded the security scan for golang github aciton

Signed-off-by: Viraj <77448246+virajsabhaya23@users.noreply.github.com>
---
 .github/workflows/docs-and-linting.yml | 26 ++++++++++++++++++++++++++
 1 file changed, 26 insertions(+)

diff --git a/.github/workflows/docs-and-linting.yml b/.github/workflows/docs-and-linting.yml
index ba36054a..cb3a1f00 100644
--- a/.github/workflows/docs-and-linting.yml
+++ b/.github/workflows/docs-and-linting.yml
@@ -60,3 +60,29 @@ jobs:
         with:
           name: oci-docs
           path: output
+
+  security-scan:
+    runs-on: ubuntu-latest
+    name: Security Vulnerability Scan
+    steps:
+      - uses: actions/checkout@v4
+
+
+      - uses: actions/setup-go@v5
+        with:
+          go-version: stable
+          cache-dependency-path: ./**/go.sum
+
+
+      - name: Install govulncheck
+        run: go install golang.org/x/vuln/cmd/govulncheck@latest
+
+
+      - name: Run govulncheck on root module
+        run: govulncheck ./...
+
+
+      - name: Run govulncheck on schema module
+        run: |
+          cd schema
+          govulncheck ./...
\ No newline at end of file