Skip to content

Commit

Permalink
Edit workflow
Browse files Browse the repository at this point in the history
  • Loading branch information
zbedo committed Jul 25, 2024
1 parent 1eb80f4 commit 6ca8e93
Showing 1 changed file with 4 additions and 8 deletions.
12 changes: 4 additions & 8 deletions .github/workflows/trivy.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,26 +2,22 @@ name: dsp-appsec-trivy
on:
pull_request:
schedule:
- cron: '0 14 * * 1' # each Monday at 9am EST
- cron: '0 0 * * 0'

jobs:
appsec-trivy:
# Parse Dockerfile and build, scan image if a "blessed" base image is not used
name: DSP AppSec Trivy check
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v3
with:
fetch-depth: 0

- uses: broadinstitute/dsp-appsec-trivy-action@v1
with:
sarif: trivy-results.sarif

- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v1
if: ${{ !github.base_ref }} # omit upload on PRs
with:
sarif_file: trivy-results.sarif

- name: Notify in Slack
if: failure()
uses: broadinstitute/action-slack@v3.15.0
Expand Down

0 comments on commit 6ca8e93

Please sign in to comment.