fix: security fix in golang and docker #20

	# This is a basic workflow to help you get started with Actions

	name: Release

	# Controls when the action will run.
	on:
	push:
	tags:
	- "*"

	# Allows you to run this workflow manually from the Actions tab
	workflow_dispatch:

	# A workflow run is made up of one or more jobs that can run sequentially or in parallel
	jobs:
	# This workflow contains a single job called "build"
	build:
	# The type of runner that the job will run on
	runs-on: ubuntu-latest

	# Steps represent a sequence of tasks that will be executed as part of the job
	steps:
	# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
	- uses: actions/checkout@v2
	with:
	fetch-depth: 0

	- name: Build
	run: docker-compose build

	- name: Start services
	run: docker-compose up -d ci

	- uses: FranzDiebold/github-env-vars-action@v2
	- name: Release
	env:
	DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }}
	run: \|
	docker-compose exec -T -u root ci bash -c 'git config --global --add safe.directory /workspace'
	docker-compose exec -T -u root ci bash -c 'echo "DOCKERHUB_USER: adrienaury" > ~/.dockerhub.yml'
	docker-compose exec -e DOCKERHUB_TOKEN=${DOCKERHUB_TOKEN} -T -u root ci bash -c 'echo "DOCKERHUB_PASS: ${DOCKERHUB_TOKEN}" >> ~/.dockerhub.yml'
	docker-compose exec \
	-T \
	-u root \
	-w /workspace \
	-e PATH=/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/local/go/bin:/home/vscode/go/bin:/workspace/bin \
	ci \
	neon -props "{tag: ${CI_ACTION_REF_NAME}, MODULE: github.com/${CI_REPOSITORY,,}, BY: $(echo ${CI_ACTOR} \| tr -d '[]'), latest: true}" publish

Provide feedback