Pass GitHub token for Trivy DB download (#249)

azimuth-cloud · Sep 26, 2024 · edc2290 · edc2290
1 parent 19390d4
commit edc2290
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/.github/workflows/build_test_images.yaml b/.github/workflows/build_test_images.yaml
@@ -96,6 +96,8 @@ jobs:
           format: sarif
           output: "${{ steps.publish-image.outputs.image-name }}.sarif"
           # turn off secret scanning to speed things up
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3
@@ -113,6 +115,8 @@ jobs:
           exit-code: '1'
           severity: 'CRITICAL'
           ignore-unfixed: true
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Write matrix outputs
         uses: cloudposse/github-action-matrix-outputs-write@0.4.2