test trivy severity through env

Ian-Nara · Ian-Nara · commit e83213645f99 · 2024-11-12T17:11:02.000-07:00
diff --git a/actions/vulnerability_scan/action.yaml b/actions/vulnerability_scan/action.yaml
@@ -120,9 +120,9 @@ runs:
       format: 'table'
       exit-code: '1'
       ignore-unfixed: true
-      severity: ${{ inputs.failure_severity }}
+      severity: HIGH,CRITICAL
       hide-progress: true
     env:
       TRIVY_SKIP_DB_UPDATE: true
       TRIVY_SKIP_JAVA_DB_UPDATE: true
-      TRIVY_SEVERITY: ${{ inputs.failure_severity }}
+      TRIVY_SEVERITY: HIGH,CRITICAL
