From 9c1e66fb54dea012ca67c676cc37247886914f57 Mon Sep 17 00:00:00 2001
From: per1234 <accounts@perglass.com>
Date: Tue, 9 Sep 2025 10:02:44 -0700
Subject: [PATCH] Manage the "yq" tool dependency

The "yq" tool is used by the `poetry:install` task.

Previously, the tool was not managed in any way.

The GitHub Actions workflows used whichever version of yq happened to be installed on the runner machine. This meant
that the GitHub Actions workflows could break at any time through the "yq" installation on the runner machine being
updated to an incompatible version.

And the task would fail entirely if executed on a Windows runner (as is done by the "Test Integration" workflow) due
GitHub not providing an installation of "yq" on that runner.

The contributors used whichever version of "yq" happened to be installed on their machine. This meant that they might
get different results from that produced by the environment of the GitHub Actions workflows. If they didn't already have
an installation, they would need to manually install the dependency.

The better solution is to take the same approach for managing the "yq" dependency as is done for the project's other
dependencies:

* Install a specific version of "yq" according to a single source of versioning data.
* Use the Dependabot service to get automated update pull requests.
---
 .github/workflows/check-clang-format.yml      | 21 ------
 .github/workflows/check-poetry-task.yml       |  9 +++
 .github/workflows/check-python-task.yml       |  9 +++
 .github/workflows/check-yaml-task.yml         |  9 +++
 .github/workflows/test-python-poetry-task.yml |  9 +++
 Taskfile.yml                                  | 56 ++++++++-------
 docs/development.md                           |  3 +
 go.mod                                        | 31 ++++++++
 go.sum                                        | 70 +++++++++++++++++++
 .../assets/poetry-task/Taskfile.yml           | 24 ++++---
 workflow-templates/check-mkdocs-task.yml      |  9 +++
 workflow-templates/check-poetry-task.md       | 18 +++++
 workflow-templates/check-poetry-task.yml      |  9 +++
 workflow-templates/check-python-task.md       | 20 ++++++
 workflow-templates/check-python-task.yml      |  9 +++
 workflow-templates/check-yaml-task.md         | 20 ++++++
 workflow-templates/check-yaml-task.yml        |  9 +++
 workflow-templates/deploy-mkdocs-poetry.md    | 20 ++++++
 workflow-templates/deploy-mkdocs-poetry.yml   |  2 +
 workflow-templates/spell-check-task.md        | 20 ++++++
 .../test-go-integration-task.md               | 20 ++++++
 workflow-templates/test-python-poetry-task.md | 20 ++++++
 .../test-python-poetry-task.yml               |  9 +++
 23 files changed, 369 insertions(+), 57 deletions(-)
 create mode 100644 go.mod
 create mode 100644 go.sum

diff --git a/.github/workflows/check-clang-format.yml b/.github/workflows/check-clang-format.yml
index 5afd6804..cf8600d8 100644
--- a/.github/workflows/check-clang-format.yml
+++ b/.github/workflows/check-clang-format.yml
@@ -84,7 +84,6 @@ jobs:
           fi
 
           echo "CLANG_FORMAT_INSTALL_PATH=${{ runner.temp }}/clang-format" >>"$GITHUB_ENV"
-          echo "YQ_INSTALL_PATH=${{ runner.temp }}/yq" >>"$GITHUB_ENV"
           echo "WORKING_FOLDER=${{ runner.temp }}" >>"$GITHUB_ENV"
 
       - name: Download ClangFormat
@@ -108,26 +107,6 @@ jobs:
           # See: https://docs.github.com/actions/reference/workflows-and-actions/workflow-commands#adding-a-system-path
           echo "${{ env.CLANG_FORMAT_INSTALL_PATH }}/clang_Linux_64bit" >>"$GITHUB_PATH"
 
-      - name: Download yq
-        id: download-yq
-        uses: MrOctopus/download-asset-action@1.0
-        with:
-          repository: mikefarah/yq
-          asset: yq_linux_amd64.tar.gz
-          target: ${{ env.YQ_INSTALL_PATH }}
-
-      - name: Install yq
-        run: |
-          cd "${{ env.YQ_INSTALL_PATH }}"
-
-          tar \
-            --extract \
-            --file="${{ steps.download-yq.outputs.name }}"
-
-          # Add installation to PATH:
-          # See: https://docs.github.com/actions/reference/workflows-and-actions/workflow-commands#adding-a-system-path
-          echo "${{ env.YQ_INSTALL_PATH }}/yq" >>"$GITHUB_PATH"
-
       - name: Check ClangFormat configuration file
         id: check
         run: |
diff --git a/.github/workflows/check-poetry-task.yml b/.github/workflows/check-poetry-task.yml
index dd66c838..f3dfea7a 100644
--- a/.github/workflows/check-poetry-task.yml
+++ b/.github/workflows/check-poetry-task.yml
@@ -6,12 +6,16 @@ on:
   push:
     paths:
       - ".github/workflows/check-poetry-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "poetry.lock"
       - "pyproject.toml"
       - "Taskfile.ya?ml"
   pull_request:
     paths:
       - ".github/workflows/check-poetry-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "poetry.lock"
       - "pyproject.toml"
       - "Taskfile.ya?ml"
@@ -57,6 +61,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with:
diff --git a/.github/workflows/check-python-task.yml b/.github/workflows/check-python-task.yml
index f375d421..c666ffbe 100644
--- a/.github/workflows/check-python-task.yml
+++ b/.github/workflows/check-python-task.yml
@@ -11,6 +11,8 @@ on:
       - "**/poetry.lock"
       - "**/pyproject.toml"
       - "**/setup.cfg"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "**/tox.ini"
       - "**.py"
@@ -21,6 +23,8 @@ on:
       - "**/poetry.lock"
       - "**/pyproject.toml"
       - "**/setup.cfg"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "**/tox.ini"
       - "**.py"
@@ -66,6 +70,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with:
diff --git a/.github/workflows/check-yaml-task.yml b/.github/workflows/check-yaml-task.yml
index b58e1dc4..737c7173 100644
--- a/.github/workflows/check-yaml-task.yml
+++ b/.github/workflows/check-yaml-task.yml
@@ -6,6 +6,8 @@ on:
   create:
   push:
     paths:
+      - "go.mod"
+      - "go.sum"
       - ".yamllint*"
       - "poetry.lock"
       - "pyproject.toml"
@@ -22,6 +24,8 @@ on:
       - "**.syntax"
   pull_request:
     paths:
+      - "go.mod"
+      - "go.sum"
       - ".yamllint*"
       - "poetry.lock"
       - "pyproject.toml"
@@ -94,6 +98,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with:
diff --git a/.github/workflows/test-python-poetry-task.yml b/.github/workflows/test-python-poetry-task.yml
index 5966cfe2..461c7c27 100644
--- a/.github/workflows/test-python-poetry-task.yml
+++ b/.github/workflows/test-python-poetry-task.yml
@@ -7,6 +7,8 @@ on:
   push:
     paths:
       - ".github/workflows/test-python-poetry-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "poetry.lock"
       - "pyproject.toml"
@@ -15,6 +17,8 @@ on:
   pull_request:
     paths:
       - ".github/workflows/test-python-poetry-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "poetry.lock"
       - "pyproject.toml"
@@ -62,6 +66,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with:
diff --git a/Taskfile.yml b/Taskfile.yml
index 99db7ab9..50b935aa 100644
--- a/Taskfile.yml
+++ b/Taskfile.yml
@@ -259,10 +259,11 @@ tasks:
     cmds:
       - |
         if
-          ! which yq \
+          ! which go \
           &>/dev/null
         then
-          echo "ec not found or not in PATH. Please install: https://github.com/mikefarah/yq/#install"
+          echo "Go not found or not in PATH."
+          echo "Please install: https://go.dev/doc/install"
           exit 1
         fi
 
@@ -282,22 +283,25 @@ tasks:
         # Correct invalid `BasedOnStyle` key value
         # The existing key is deleted before assigning it to a valid value in order to achieve consistent quoting style
         # (updating the empty string value in place causes the assigned value to be wrapped in quotes)
-        yq \
-          --inplace \
-          'del(.BasedOnStyle)' \
-          "{{.TARGET_PATH}}"
+        go tool \
+          github.com/mikefarah/yq/v4 \
+            --inplace \
+            'del(.BasedOnStyle)' \
+            "{{.TARGET_PATH}}"
 
-        yq \
-          --inplace \
-          '.BasedOnStyle = "LLVM"' \
-          "{{.TARGET_PATH}}"
+        go tool \
+          github.com/mikefarah/yq/v4 \
+            --inplace \
+            '.BasedOnStyle = "LLVM"' \
+            "{{.TARGET_PATH}}"
 
       - |
         # Fix the inconsistent key order
-        yq \
-          --inplace \
-          'sort_keys(.)' \
-          "{{.TARGET_PATH}}"
+        go tool \
+          github.com/mikefarah/yq/v4 \
+            --inplace \
+            'sort_keys(.)' \
+            "{{.TARGET_PATH}}"
 
   # Use ClangFormat to format the files under the path specified by TARGET_FOLDER recursively
   clang-format:format:
@@ -964,11 +968,11 @@ tasks:
     cmds:
       - |
         if
-          ! which yq \
+          ! which go \
           &>/dev/null
         then
-          echo "yq not found or not in PATH."
-          echo "Please install: https://github.com/mikefarah/yq/#install"
+          echo "Go not found or not in PATH."
+          echo "Please install: https://go.dev/doc/install"
           exit 1
         fi
       - |
@@ -977,10 +981,11 @@ tasks:
           &>/dev/null
         then
           python_constraint="$( \
-            yq \
-              --input-format toml \
-              --output-format yaml \
-              '.tool.poetry.dependencies.python' \
+            go tool \
+              github.com/mikefarah/yq/v4 \
+                --input-format toml \
+                --output-format yaml \
+                '.tool.poetry.dependencies.python' \
             <pyproject.toml
           )"
 
@@ -1005,10 +1010,11 @@ tasks:
         )"
 
         poetry_constraint="$( \
-          yq \
-            --input-format toml \
-            --output-format yaml \
-            '.tool.poetry.group.pipx.dependencies.poetry' \
+          go tool \
+            github.com/mikefarah/yq/v4 \
+              --input-format toml \
+              --output-format yaml \
+              '.tool.poetry.group.pipx.dependencies.poetry' \
           <pyproject.toml
         )"
 
diff --git a/docs/development.md b/docs/development.md
index c573d939..f09901ea 100644
--- a/docs/development.md
+++ b/docs/development.md
@@ -6,6 +6,9 @@
 
 The following development tools must be available in your local environment:
 
+- [**Go**](https://go.dev/dl/) - programming language
+  - The **Go** version in use is defined in the `go` directive of [`go.mod`](../go.mod).
+  - [**gvm**](https://github.com/moovweb/gvm#installing) is recommended if you want to manage multiple installations of **Go** on your system.
 - [**Node.js** / **npm**](https://nodejs.org/en/download/) - Node.js dependencies management tool
   - The **Node.js** version in use is defined by the `engines.node` key of [`package.json`](../package.json).
 - [**Python**](https://wiki.python.org/moin/BeginnersGuide/Download)
diff --git a/go.mod b/go.mod
new file mode 100644
index 00000000..1fcbdb4f
--- /dev/null
+++ b/go.mod
@@ -0,0 +1,31 @@
+module github.com/arduino/tooling-project-assets
+
+go 1.24.7
+
+tool github.com/mikefarah/yq/v4
+
+require (
+	github.com/a8m/envsubst v1.4.3 // indirect
+	github.com/alecthomas/participle/v2 v2.1.4 // indirect
+	github.com/dimchansky/utfbom v1.1.1 // indirect
+	github.com/elliotchance/orderedmap v1.8.0 // indirect
+	github.com/fatih/color v1.18.0 // indirect
+	github.com/go-ini/ini v1.67.0 // indirect
+	github.com/goccy/go-json v0.10.5 // indirect
+	github.com/goccy/go-yaml v1.18.0 // indirect
+	github.com/inconshreveable/mousetrap v1.1.0 // indirect
+	github.com/jinzhu/copier v0.4.0 // indirect
+	github.com/magiconair/properties v1.8.10 // indirect
+	github.com/mattn/go-colorable v0.1.14 // indirect
+	github.com/mattn/go-isatty v0.0.20 // indirect
+	github.com/mikefarah/yq/v4 v4.47.2 // indirect
+	github.com/pelletier/go-toml/v2 v2.2.4 // indirect
+	github.com/spf13/cobra v1.10.1 // indirect
+	github.com/spf13/pflag v1.0.10 // indirect
+	github.com/yuin/gopher-lua v1.1.1 // indirect
+	go.yaml.in/yaml/v3 v3.0.4 // indirect
+	golang.org/x/net v0.43.0 // indirect
+	golang.org/x/sys v0.35.0 // indirect
+	golang.org/x/text v0.28.0 // indirect
+	gopkg.in/op/go-logging.v1 v1.0.0-20160211212156-b2cb9fa56473 // indirect
+)
diff --git a/go.sum b/go.sum
new file mode 100644
index 00000000..7814c0e8
--- /dev/null
+++ b/go.sum
@@ -0,0 +1,70 @@
+github.com/a8m/envsubst v1.4.3 h1:kDF7paGK8QACWYaQo6KtyYBozY2jhQrTuNNuUxQkhJY=
+github.com/a8m/envsubst v1.4.3/go.mod h1:4jjHWQlZoaXPoLQUb7H2qT4iLkZDdmEQiOUogdUmqVU=
+github.com/alecthomas/assert/v2 v2.11.0 h1:2Q9r3ki8+JYXvGsDyBXwH3LcJ+WK5D0gc5E8vS6K3D0=
+github.com/alecthomas/assert/v2 v2.11.0/go.mod h1:Bze95FyfUr7x34QZrjL+XP+0qgp/zg8yS+TtBj1WA3k=
+github.com/alecthomas/participle/v2 v2.1.4 h1:W/H79S8Sat/krZ3el6sQMvMaahJ+XcM9WSI2naI7w2U=
+github.com/alecthomas/participle/v2 v2.1.4/go.mod h1:8tqVbpTX20Ru4NfYQgZf4mP18eXPTBViyMWiArNEgGI=
+github.com/alecthomas/repr v0.5.1 h1:E3G4t2QbHTSNpPKBgMTln5KLkZHLOcU7r37J4pXBuIg=
+github.com/alecthomas/repr v0.5.1/go.mod h1:Fr0507jx4eOXV7AlPV6AVZLYrLIuIeSOWtW57eE/O/4=
+github.com/cpuguy83/go-md2man/v2 v2.0.6/go.mod h1:oOW0eioCTA6cOiMLiUPZOpcVxMig6NIQQ7OS05n1F4g=
+github.com/davecgh/go-spew v1.1.0 h1:ZDRjVQ15GmhC3fiQ8ni8+OwkZQO4DARzQgrnXU1Liz8=
+github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/dimchansky/utfbom v1.1.1 h1:vV6w1AhK4VMnhBno/TPVCoK9U/LP0PkLCS9tbxHdi/U=
+github.com/dimchansky/utfbom v1.1.1/go.mod h1:SxdoEBH5qIqFocHMyGOXVAybYJdr71b1Q/j0mACtrfE=
+github.com/elliotchance/orderedmap v1.8.0 h1:TrOREecvh3JbS+NCgwposXG5ZTFHtEsQiCGOhPElnMw=
+github.com/elliotchance/orderedmap v1.8.0/go.mod h1:wsDwEaX5jEoyhbs7x93zk2H/qv0zwuhg4inXhDkYqys=
+github.com/fatih/color v1.18.0 h1:S8gINlzdQ840/4pfAwic/ZE0djQEH3wM94VfqLTZcOM=
+github.com/fatih/color v1.18.0/go.mod h1:4FelSpRwEGDpQ12mAdzqdOukCy4u8WUtOY6lkT/6HfU=
+github.com/go-ini/ini v1.67.0 h1:z6ZrTEZqSWOTyH2FlglNbNgARyHG8oLW9gMELqKr06A=
+github.com/go-ini/ini v1.67.0/go.mod h1:ByCAeIL28uOIIG0E3PJtZPDL8WnHpFKFOtgjp+3Ies8=
+github.com/goccy/go-json v0.10.5 h1:Fq85nIqj+gXn/S5ahsiTlK3TmC85qgirsdTP/+DeaC4=
+github.com/goccy/go-json v0.10.5/go.mod h1:oq7eo15ShAhp70Anwd5lgX2pLfOS3QCiwU/PULtXL6M=
+github.com/goccy/go-yaml v1.18.0 h1:8W7wMFS12Pcas7KU+VVkaiCng+kG8QiFeFwzFb+rwuw=
+github.com/goccy/go-yaml v1.18.0/go.mod h1:XBurs7gK8ATbW4ZPGKgcbrY1Br56PdM69F7LkFRi1kA=
+github.com/hexops/gotextdiff v1.0.3 h1:gitA9+qJrrTCsiCl7+kh75nPqQt1cx4ZkudSTLoUqJM=
+github.com/hexops/gotextdiff v1.0.3/go.mod h1:pSWU5MAI3yDq+fZBTazCSJysOMbxWL1BSow5/V2vxeg=
+github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
+github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
+github.com/jinzhu/copier v0.4.0 h1:w3ciUoD19shMCRargcpm0cm91ytaBhDvuRpz1ODO/U8=
+github.com/jinzhu/copier v0.4.0/go.mod h1:DfbEm0FYsaqBcKcFuvmOZb218JkPGtvSHsKg8S8hyyg=
+github.com/magiconair/properties v1.8.10 h1:s31yESBquKXCV9a/ScB3ESkOjUYYv+X0rg8SYxI99mE=
+github.com/magiconair/properties v1.8.10/go.mod h1:Dhd985XPs7jluiymwWYZ0G4Z61jb3vdS329zhj2hYo0=
+github.com/mattn/go-colorable v0.1.14 h1:9A9LHSqF/7dyVVX6g0U9cwm9pG3kP9gSzcuIPHPsaIE=
+github.com/mattn/go-colorable v0.1.14/go.mod h1:6LmQG8QLFO4G5z1gPvYEzlUgJ2wF+stgPZH1UqBm1s8=
+github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
+github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
+github.com/mikefarah/yq/v4 v4.47.2 h1:Jb5fHlvgK5eeaPbreG9UJs1E5w6l5hUzXjeaY6LTTWY=
+github.com/mikefarah/yq/v4 v4.47.2/go.mod h1:ulYbZUzGJsBDDwO5ohvk/KOW4vW5Iddd/DBeAY1Q09g=
+github.com/pelletier/go-toml/v2 v2.2.4 h1:mye9XuhQ6gvn5h28+VilKrrPoQVanw5PMw/TB0t5Ec4=
+github.com/pelletier/go-toml/v2 v2.2.4/go.mod h1:2gIqNv+qfxSVS7cM2xJQKtLSTLUE9V8t9Stt+h56mCY=
+github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e h1:aoZm08cpOy4WuID//EZDgcC4zIxODThtZNPirFr42+A=
+github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
+github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
+github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
+github.com/spf13/cobra v1.10.1 h1:lJeBwCfmrnXthfAupyUTzJ/J4Nc1RsHC/mSRU2dll/s=
+github.com/spf13/cobra v1.10.1/go.mod h1:7SmJGaTHFVBY0jW4NXGluQoLvhqFQM+6XSKD+P4XaB0=
+github.com/spf13/pflag v1.0.9/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/spf13/pflag v1.0.10 h1:4EBh2KAYBwaONj6b2Ye1GiHfwjqyROoF4RwYO+vPwFk=
+github.com/spf13/pflag v1.0.10/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
+github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/yuin/gopher-lua v1.1.1 h1:kYKnWBjvbNP4XLT3+bPEwAXJx262OhaHDWDVOPjL46M=
+github.com/yuin/gopher-lua v1.1.1/go.mod h1:GBR0iDaNXjAgGg9zfCvksxSRnQx76gclCIb7kdAd1Pw=
+go.yaml.in/yaml/v3 v3.0.4 h1:tfq32ie2Jv2UxXFdLJdh3jXuOzWiL1fo0bu/FbuKpbc=
+go.yaml.in/yaml/v3 v3.0.4/go.mod h1:DhzuOOF2ATzADvBadXxruRBLzYTpT36CKvDb3+aBEFg=
+golang.org/x/net v0.43.0 h1:lat02VYK2j4aLzMzecihNvTlJNQUq316m2Mr9rnM6YE=
+golang.org/x/net v0.43.0/go.mod h1:vhO1fvI4dGsIjh73sWfUVjj3N7CA9WkKJNQm2svM6Jg=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.35.0 h1:vz1N37gP5bs89s7He8XuIYXpyY0+QlsKmzipCbUtyxI=
+golang.org/x/sys v0.35.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k=
+golang.org/x/text v0.28.0 h1:rhazDwis8INMIwQ4tpjLDzUhx6RlXqZNPEM0huQojng=
+golang.org/x/text v0.28.0/go.mod h1:U8nCwOR8jO/marOQ0QbDiOngZVEBB7MAiitBuMjXiNU=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/op/go-logging.v1 v1.0.0-20160211212156-b2cb9fa56473 h1:6D+BvnJ/j6e222UW8s2qTSe3wGBtvo0MbVQG/c5k8RE=
+gopkg.in/op/go-logging.v1 v1.0.0-20160211212156-b2cb9fa56473/go.mod h1:N1eN2tsCx0Ydtgjl4cqmbRCsY4/+z4cYDeqwZTk6zog=
+gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
diff --git a/workflow-templates/assets/poetry-task/Taskfile.yml b/workflow-templates/assets/poetry-task/Taskfile.yml
index 0b9e9ac2..c856d798 100644
--- a/workflow-templates/assets/poetry-task/Taskfile.yml
+++ b/workflow-templates/assets/poetry-task/Taskfile.yml
@@ -9,11 +9,11 @@ tasks:
     cmds:
       - |
         if
-          ! which yq \
+          ! which go \
           &>/dev/null
         then
-          echo "yq not found or not in PATH."
-          echo "Please install: https://github.com/mikefarah/yq/#install"
+          echo "Go not found or not in PATH."
+          echo "Please install: https://go.dev/doc/install"
           exit 1
         fi
       - |
@@ -22,10 +22,11 @@ tasks:
           &>/dev/null
         then
           python_constraint="$( \
-            yq \
-              --input-format toml \
-              --output-format yaml \
-              '.tool.poetry.dependencies.python' \
+            go tool \
+              github.com/mikefarah/yq/v4 \
+                --input-format toml \
+                --output-format yaml \
+                '.tool.poetry.dependencies.python' \
             <pyproject.toml
           )"
 
@@ -50,10 +51,11 @@ tasks:
         )"
 
         poetry_constraint="$( \
-          yq \
-            --input-format toml \
-            --output-format yaml \
-            '.tool.poetry.group.pipx.dependencies.poetry' \
+          go tool \
+            github.com/mikefarah/yq/v4 \
+              --input-format toml \
+              --output-format yaml \
+              '.tool.poetry.group.pipx.dependencies.poetry' \
           <pyproject.toml
         )"
 
diff --git a/workflow-templates/check-mkdocs-task.yml b/workflow-templates/check-mkdocs-task.yml
index 60d1036e..74cf98c8 100644
--- a/workflow-templates/check-mkdocs-task.yml
+++ b/workflow-templates/check-mkdocs-task.yml
@@ -7,6 +7,8 @@ on:
   push:
     paths:
       - ".github/workflows/check-mkdocs-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "mkdocs.ya?ml"
       - "poetry.lock"
@@ -15,6 +17,8 @@ on:
   pull_request:
     paths:
       - ".github/workflows/check-mkdocs-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "mkdocs.ya?ml"
       - "poetry.lock"
@@ -62,6 +66,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with:
diff --git a/workflow-templates/check-poetry-task.md b/workflow-templates/check-poetry-task.md
index 1bac610e..7ce91d71 100644
--- a/workflow-templates/check-poetry-task.md
+++ b/workflow-templates/check-poetry-task.md
@@ -17,6 +17,24 @@ Install the [check-poetry-task.yml](check-poetry-task.yml) GitHub Actions workfl
 - [`Taskfile.yml`](assets/poetry-task/Taskfile.yml) - Installation task.
   - Merge into `Taskfile.yml`
 
+### Dependencies
+
+If the project does not already have a `go.mod` file, [install **Go**](https://go.dev/doc/install) and then run the following command:
+
+```text
+go mod init <module path>
+```
+
+(where `<module path>` is the URL of the project repository without the scheme e.g., `github.com/foo/bar`)
+
+Add the tool dependencies by running the following command:
+
+```
+go get -tool github.com/mikefarah/yq/v4@v4.47.2
+```
+
+Commit the resulting changes to the `go.mod` and `go.sum` files.
+
 ## Readme badge
 
 Markdown badge:
diff --git a/workflow-templates/check-poetry-task.yml b/workflow-templates/check-poetry-task.yml
index dd66c838..f3dfea7a 100644
--- a/workflow-templates/check-poetry-task.yml
+++ b/workflow-templates/check-poetry-task.yml
@@ -6,12 +6,16 @@ on:
   push:
     paths:
       - ".github/workflows/check-poetry-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "poetry.lock"
       - "pyproject.toml"
       - "Taskfile.ya?ml"
   pull_request:
     paths:
       - ".github/workflows/check-poetry-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "poetry.lock"
       - "pyproject.toml"
       - "Taskfile.ya?ml"
@@ -57,6 +61,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with:
diff --git a/workflow-templates/check-python-task.md b/workflow-templates/check-python-task.md
index 049cef6d..605e07e5 100644
--- a/workflow-templates/check-python-task.md
+++ b/workflow-templates/check-python-task.md
@@ -25,6 +25,26 @@ The code style defined in `pyproject.toml` and `.flake8` is the official standar
 
 ### Dependencies
 
+#### Go Module-Managed Dependencies
+
+If the project does not already have a `go.mod` file, [install **Go**](https://go.dev/doc/install) and then run the following command:
+
+```text
+go mod init <module path>
+```
+
+(where `<module path>` is the URL of the project repository without the scheme e.g., `github.com/foo/bar`)
+
+Add the tool dependencies by running the following command:
+
+```
+go get -tool github.com/mikefarah/yq/v4@v4.47.2
+```
+
+Commit the resulting changes to the `go.mod` and `go.sum` files.
+
+#### Poetry-Managed Dependencies
+
 Add the tool dependencies using this command:
 
 ```
diff --git a/workflow-templates/check-python-task.yml b/workflow-templates/check-python-task.yml
index f375d421..c666ffbe 100644
--- a/workflow-templates/check-python-task.yml
+++ b/workflow-templates/check-python-task.yml
@@ -11,6 +11,8 @@ on:
       - "**/poetry.lock"
       - "**/pyproject.toml"
       - "**/setup.cfg"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "**/tox.ini"
       - "**.py"
@@ -21,6 +23,8 @@ on:
       - "**/poetry.lock"
       - "**/pyproject.toml"
       - "**/setup.cfg"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "**/tox.ini"
       - "**.py"
@@ -66,6 +70,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with:
diff --git a/workflow-templates/check-yaml-task.md b/workflow-templates/check-yaml-task.md
index 074b56ce..d8e88845 100644
--- a/workflow-templates/check-yaml-task.md
+++ b/workflow-templates/check-yaml-task.md
@@ -27,6 +27,26 @@ The code style defined in this file is the official standardized style to be use
 
 ### Dependencies
 
+#### Go Module-Managed Dependencies
+
+If the project does not already have a `go.mod` file, [install **Go**](https://go.dev/doc/install) and then run the following command:
+
+```text
+go mod init <module path>
+```
+
+(where `<module path>` is the URL of the project repository without the scheme e.g., `github.com/foo/bar`)
+
+Add the tool dependencies by running the following command:
+
+```
+go get -tool github.com/mikefarah/yq/v4@v4.47.2
+```
+
+Commit the resulting changes to the `go.mod` and `go.sum` files.
+
+#### Poetry-Managed Dependencies
+
 Add the tool dependency using this command:
 
 ```
diff --git a/workflow-templates/check-yaml-task.yml b/workflow-templates/check-yaml-task.yml
index b58e1dc4..737c7173 100644
--- a/workflow-templates/check-yaml-task.yml
+++ b/workflow-templates/check-yaml-task.yml
@@ -6,6 +6,8 @@ on:
   create:
   push:
     paths:
+      - "go.mod"
+      - "go.sum"
       - ".yamllint*"
       - "poetry.lock"
       - "pyproject.toml"
@@ -22,6 +24,8 @@ on:
       - "**.syntax"
   pull_request:
     paths:
+      - "go.mod"
+      - "go.sum"
       - ".yamllint*"
       - "poetry.lock"
       - "pyproject.toml"
@@ -94,6 +98,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with:
diff --git a/workflow-templates/deploy-mkdocs-poetry.md b/workflow-templates/deploy-mkdocs-poetry.md
index 77761eeb..be83db45 100644
--- a/workflow-templates/deploy-mkdocs-poetry.md
+++ b/workflow-templates/deploy-mkdocs-poetry.md
@@ -23,6 +23,26 @@ Install the [`deploy-mkdocs-poetry.yml`](deploy-mkdocs-poetry.yml) GitHub Action
 
 ### Dependencies
 
+#### Go Module-Managed Dependencies
+
+If the project does not already have a `go.mod` file, [install **Go**](https://go.dev/doc/install) and then run the following command:
+
+```text
+go mod init <module path>
+```
+
+(where `<module path>` is the URL of the project repository without the scheme e.g., `github.com/foo/bar`)
+
+Add the tool dependencies by running the following command:
+
+```
+go get -tool github.com/mikefarah/yq/v4@v4.47.2
+```
+
+Commit the resulting changes to the `go.mod` and `go.sum` files.
+
+#### Poetry-Managed Dependencies
+
 Add the tool dependencies using this command:
 
 ```
diff --git a/workflow-templates/deploy-mkdocs-poetry.yml b/workflow-templates/deploy-mkdocs-poetry.yml
index 3634fac6..401d6542 100644
--- a/workflow-templates/deploy-mkdocs-poetry.yml
+++ b/workflow-templates/deploy-mkdocs-poetry.yml
@@ -9,6 +9,8 @@ on:
       - main
     paths:
       - ".github/workflows/deploy-mkdocs-poetry.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "mkdocs.ya?ml"
       - "poetry.lock"
       - "pyproject.toml"
diff --git a/workflow-templates/spell-check-task.md b/workflow-templates/spell-check-task.md
index 959011c9..ce2d5f7e 100644
--- a/workflow-templates/spell-check-task.md
+++ b/workflow-templates/spell-check-task.md
@@ -21,6 +21,26 @@ Install the [spell-check-task.yml](spell-check-task.yml) GitHub Actions workflow
 
 ### Dependencies
 
+#### Go Module-Managed Dependencies
+
+If the project does not already have a `go.mod` file, [install **Go**](https://go.dev/doc/install) and then run the following command:
+
+```text
+go mod init <module path>
+```
+
+(where `<module path>` is the URL of the project repository without the scheme e.g., `github.com/foo/bar`)
+
+Add the tool dependencies by running the following command:
+
+```
+go get -tool github.com/mikefarah/yq/v4@v4.47.2
+```
+
+Commit the resulting changes to the `go.mod` and `go.sum` files.
+
+#### Poetry-Managed Dependencies
+
 The `codespell` tool dependency is managed by [Poetry](https://python-poetry.org/).
 
 Install Poetry by following these instructions:<br />
diff --git a/workflow-templates/test-go-integration-task.md b/workflow-templates/test-go-integration-task.md
index 433cd43c..cc7c53f9 100644
--- a/workflow-templates/test-go-integration-task.md
+++ b/workflow-templates/test-go-integration-task.md
@@ -29,6 +29,26 @@ Install the [`test-go-integration-task.yml`](test-go-integration-task.yml) GitHu
 
 ### Dependencies
 
+#### Go Module-Managed Dependencies
+
+If the project does not already have a `go.mod` file, [install **Go**](https://go.dev/doc/install) and then run the following command:
+
+```text
+go mod init <module path>
+```
+
+(where `<module path>` is the URL of the project repository without the scheme e.g., `github.com/foo/bar`)
+
+Add the tool dependencies by running the following command:
+
+```
+go get -tool github.com/mikefarah/yq/v4@v4.47.2
+```
+
+Commit the resulting changes to the `go.mod` and `go.sum` files.
+
+#### Poetry-Managed Dependencies
+
 Add the tool dependencies using this command:
 
 ```
diff --git a/workflow-templates/test-python-poetry-task.md b/workflow-templates/test-python-poetry-task.md
index bf9ada6d..7dc82461 100644
--- a/workflow-templates/test-python-poetry-task.md
+++ b/workflow-templates/test-python-poetry-task.md
@@ -27,6 +27,26 @@ Install the [`test-python-poetry-task.yml`](test-python-poetry-task.yml) GitHub
 
 ### Dependencies
 
+#### Go Module-Managed Dependencies
+
+If the project does not already have a `go.mod` file, [install **Go**](https://go.dev/doc/install) and then run the following command:
+
+```text
+go mod init <module path>
+```
+
+(where `<module path>` is the URL of the project repository without the scheme e.g., `github.com/foo/bar`)
+
+Add the tool dependencies by running the following command:
+
+```
+go get -tool github.com/mikefarah/yq/v4@v4.47.2
+```
+
+Commit the resulting changes to the `go.mod` and `go.sum` files.
+
+#### Poetry-Managed Dependencies
+
 Add the tool dependency using this command:
 
 ```
diff --git a/workflow-templates/test-python-poetry-task.yml b/workflow-templates/test-python-poetry-task.yml
index 5966cfe2..461c7c27 100644
--- a/workflow-templates/test-python-poetry-task.yml
+++ b/workflow-templates/test-python-poetry-task.yml
@@ -7,6 +7,8 @@ on:
   push:
     paths:
       - ".github/workflows/test-python-poetry-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "poetry.lock"
       - "pyproject.toml"
@@ -15,6 +17,8 @@ on:
   pull_request:
     paths:
       - ".github/workflows/test-python-poetry-task.ya?ml"
+      - "go.mod"
+      - "go.sum"
       - "Taskfile.ya?ml"
       - "poetry.lock"
       - "pyproject.toml"
@@ -62,6 +66,11 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
 
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Install Python
         uses: actions/setup-python@v5
         with: