Feat/improve go actions (#2)

* 📝 Add gitignore and update readme

* 🎨 Improve CI workflow + add new features

* ✨ Add cd workflow for go release

* 🔒 Add CODEOWNERS

* 🎨 Implement review comments

* remove cache restore

Signed-off-by: Alexander Soelberg Heidarsson <89837986+alex5517@users.noreply.github.com>

---------

Signed-off-by: Alexander Soelberg Heidarsson <89837986+alex5517@users.noreply.github.com>

Author: alex5517

.github/workflows/go-cd.yaml

@@ -0,0 +1,51 @@
+# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
+---
+name: Go Continuous Delivery
+
+on:
+  workflow_call:
+    inputs:
+      go-version:
+        description: "The version of Go to use"
+        required: false
+        type: string
+      go-private:
+        description: "The GOPRIVATE environment variable"
+        required: false
+        type: string
+
+jobs:
+  release:
+    env:
+      GOPRIVATE: "${{ inputs.go-private }}"
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Setup Go
+        if: inputs.go-version != ''
+        uses: actions/setup-go@v5
+        with:
+          go-version: ${{ inputs.go-version }}
+
+      - name: Setup Go
+        if: inputs.go-version == ''
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
+      - name: Setup private repository access
+        if: inputs.go-private != ''
+        run: git config --global url."https://${{ secrets.gh_username }}:${{ secrets.gh_token }}@github.com".insteadOf "https://github.com"
+
+      - name: Run GoReleaser dry-run
+        uses: goreleaser/goreleaser-action@v6
+        with:
+          distribution: goreleaser
+          version: latest
+          args: release --clean
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/go-ci.yaml

@@ -0,0 +1,114 @@
+# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
+---
+name: Go Continuous Integration
+
+on:
+  workflow_call:
+    secrets:
+      gh_username:
+        required: false
+      gh_token:
+        required: false
+    inputs:
+      go-version:
+        description: "The version of Go to use"
+        required: false
+        type: string
+      go-private:
+        description: "The GOPRIVATE environment variable"
+        required: false
+        type: string
+      run-benchmarks:
+        description: "Run benchmarks"
+        required: false
+        default: false
+        type: boolean
+      run-release-test:
+        description: "Run release dry-run using GoReleaser"
+        required: false
+        default: false
+        type: boolean
+
+jobs:
+  tests:
+    env:
+      GOPRIVATE: "${{ inputs.go-private }}"
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup Go
+        if: inputs.go-version != ''
+        uses: actions/setup-go@v5
+        with:
+          go-version: ${{ inputs.go-version }}
+
+      - name: Setup Go
+        if: inputs.go-version == ''
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
+      - name: Setup private repository access
+        if: inputs.go-private != ''
+        run: git config --global url."https://${{ secrets.gh_username }}:${{ secrets.gh_token }}@github.com".insteadOf "https://github.com"
+
+      - name: Check go mod tidy
+        run: |
+          go mod tidy
+          if git diff --exit-code go.mod go.sum; then
+            echo "go.mod and go.sum are tidy."
+          else
+            echo "::error go.mod or go.sum are not tidy. Please run 'go mod tidy'."
+            exit 1
+          fi
+
+      - name: Install Go dependencies
+        run: |
+          go mod download
+          go mod verify
+
+      - name: golangci-lint
+        uses: golangci/golangci-lint-action@v6
+        with:
+          version: latest
+
+      # go test will compile the code, so we don't need to run go build
+      - name: Go Compile and Test
+        run: go test -cover -v ./...
+
+      - name: Run benchmarks
+        if: inputs.run-benchmarks
+        run: go test -bench=./...
+
+      - name: Install GoReleaser
+        uses: goreleaser/goreleaser-action@v6
+        with:
+          distribution: goreleaser
+          version: latest
+          install-only: true
+
+      - name: Run GoReleaser healthcheck
+        run: goreleaser healthcheck
+
+      - name: Check GoReleaser config
+        run: goreleaser check
+
+      - name: Run GoReleaser dry-run
+        if: inputs.run-release-test
+        run: goreleaser release --snapshot --skip=publish --clean
+
+  vuln-scan:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+      - name: Run Trivy vulnerability scanner
+        uses: aquasecurity/trivy-action@0.30.0
+        with:
+          scan-type: "fs"
+          format: "table"
+          exit-code: "1"
+          ignore-unfixed: true
+          vuln-type: "library"

.github/workflows/go-ci.yml

@@ -0,0 +1 @@
+go-ci.yaml

.github/workflows/go-ci.yml

@@ -0,0 +1 @@
+.idea

.gitignore

@@ -0,0 +1,2 @@
+# Owner: platform-development @Netic
+* @neticdk/platform-development

CODEOWNERS

@@ -7,7 +7,7 @@ In your workflow do something like:
 ```yaml
 jobs:
   the-job:
-    uses: neticdk/shared-github-actions/.github/workflows/the-flow.yml@main
+    uses: neticdk/shared-github-actions/.github/workflows/the-flow.yaml@main
     with:
       my-input: my-value
 ```