Skip to content

Commit

Permalink
Trivy Fix
Browse files Browse the repository at this point in the history
  • Loading branch information
richard.barrett committed Apr 25, 2024
1 parent 51cfd0c commit 983a369
Showing 1 changed file with 10 additions and 12 deletions.
22 changes: 10 additions & 12 deletions .github/workflows/trivy.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -12,15 +12,13 @@ jobs:
steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Build an image from Dockerfile
run: |
docker build -t docker.io/my-organization/my-app:${{ github.sha }} .
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
with:
image-ref: 'docker.io/my-organization/my-app:${{ github.sha }}'
format: 'table'
exit-code: '1'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
- name: 'Security Scan'
if: github.ref != format('refs/heads/{0}', github.event.repository.default_branch)
uses: aquasecurity/trivy-action@0.14.0
with:
scan-type: 'config'
scan-ref: './examples/complete/'
hide-progress: false
exit-code: '1'
ignore-unfixed: true
severity: 'CRITICAL,HIGH'

0 comments on commit 983a369

Please sign in to comment.