tpl
/
obsidian-sample-plugin
Template
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update trivy.yml

This commit is contained in:
Maris Beer 2024-06-25 18:34:48 +02:00 committed by GitHub
parent 44609cbbe1
commit 6afb0d2932
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
.github/workflows/trivy.yml vendored
View File

@ -29,15 +29,11 @@ jobs:
- name: Checkout code - name: Checkout code
uses: actions/checkout@v4 uses: actions/checkout@v4
- name: Build an image from Dockerfile
run: |
docker build -t docker.io/my-organization/my-app:${{ github.sha }} .
- name: Run Trivy vulnerability scanner - name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@7b7aa264d83dc58691451798b4d117d53d21edfe uses: aquasecurity/trivy-action@7b7aa264d83dc58691451798b4d117d53d21edfe
with: with:
image-ref: 'docker.io/my-organization/my-app:${{ github.sha }}' scan-type: 'fs'
format: 'template' scan-ref: '.'
template: '@/contrib/sarif.tpl' template: '@/contrib/sarif.tpl'
output: 'trivy-results.sarif' output: 'trivy-results.sarif'
severity: 'CRITICAL,HIGH' severity: 'CRITICAL,HIGH'