disable secret scanning

opencrvs · May 24, 2024 · d6cd559 · d6cd559
1 parent b64cde7
commit d6cd559
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 2 deletions.
diff --git a/.github/workflows/build-images-from-branch.yml b/.github/workflows/build-images-from-branch.yml
@@ -95,7 +95,7 @@ jobs:
           cache-from: type=registry,ref=opencrvs/ocrvs-${{ matrix.service }}:${{ needs.base.outputs.branch }}
           cache-to: type=inline
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.21.0
         with:
           image-ref: 'opencrvs/ocrvs-${{ matrix.service }}:${{ needs.base.outputs.version }}'
           trivy-config: trivy.yaml
diff --git a/trivy.yaml b/trivy.yaml
@@ -23,7 +23,6 @@ scan:
   scanners:
     - vuln
     - misconfig
-    - secret
 ignorefile: .trivyignore.yaml
 vulnerability:
   ignore-unfixed: true