ci: convert to FOSSA scan (#2371)

.fossa.yml

@@ -0,0 +1,19 @@
+# Generated by FOSSA CLI (https://github.com/fossas/fossa-cli)
+# Visit https://fossa.com to learn more
+
+version: 2
+cli:
+  server: https://app.fossa.com
+  fetcher: custom
+  project: git@github.com:pomerium/pomerium.git
+analyze:
+  modules:
+    - name: github.com/pomerium/pomerium/cmd/pomerium
+      type: go
+      target: github.com/pomerium/pomerium/cmd/pomerium
+      path: cmd/pomerium
+
+    - name: github.com/pomerium/pomerium/cmd/pomerium-cli
+      type: go
+      target: github.com/pomerium/pomerium/cmd/pomerium-cli
+      path: cmd/pomerium-cli

.github/workflows/test.yaml

@@ -217,16 +217,16 @@ jobs:
 
       - uses: actions/checkout@v2
 
-      - name: install lichen
-        run: $(cd /tmp; go get github.com/uw-labs/lichen)
-
       - name: retrieve binary
         uses: actions/download-artifact@v2
         with:
           name: pomerium ${{ github.run_id }} ${{ matrix.platform }}
           path: bin/
 
-      - name: golang license check
-        run: |
-          chmod 755 bin/pomerium bin/pomerium-cli
-          lichen --config lichen.yaml bin/pomerium*
+      - name: download envoy
+        run: make get-envoy
+
+      - name: FOSSA Scan
+        uses: fossa-contrib/fossa-action@v1
+        with:
+          fossa-api-key: 18f4ef488f514d06874b75f5809cea93

lichen.yaml

@@ -1,7 +0,0 @@
-override:
-  - path: "gopkg.in/alecthomas/kingpin.v2"
-    licenses: ["MIT"]
-  - path: "github.com/alecthomas/units"
-    licenses: ["MIT"]
-  - path: "gopkg.in/cookieo9/resources-go.v2"
-    licenses: ["MIT"]