Add skip_image_scan input

puehringer · web-flow · commit 251378b5d70d · 2025-04-15T13:44:42.000+02:00
diff --git a/.github/workflows/build-docker-artifacts.yml b/.github/workflows/build-docker-artifacts.yml
@@ -22,6 +22,10 @@ on:
         type: boolean
         required: false
         default: true
+      skip_image_scan:
+        type: boolean
+        required: false
+        default: false
       runs_on:
         type: string
         required: false
@@ -240,7 +244,7 @@ jobs:
         run: docker logout ${{ steps.login-ecr.outputs.registry }}
 
       - name: Scan image
-        if: ${{ fromJson(vars.SKIP_IMAGE_SCAN) != true && matrix.component.skip_image_scan != true }}
+        if: ${{ skip_image_scan != true && fromJson(vars.SKIP_IMAGE_SCAN) != true && matrix.component.skip_image_scan != true }}
         id: get-ecr-scan-result
         uses: ./tmp/github-workflows/.github/actions/get-ecr-scan-result
         with:
@@ -250,7 +254,7 @@ jobs:
           ecr_repository: ${{ matrix.component.ecr_repository }}
           image_tag: ${{ matrix.component.image_tag }}
       - name: Check scan results
-        if: ${{ fromJson(vars.SKIP_IMAGE_SCAN) != true && matrix.component.skip_image_scan != true }}
+        if: ${{ skip_image_scan != true && fromJson(vars.SKIP_IMAGE_SCAN) != true && matrix.component.skip_image_scan != true }}
         run: |
           if [ "${{ steps.get-ecr-scan-result.outputs.critical }}" != "null" ] || [ "${{ steps.get-ecr-scan-result.outputs.high }}" != "null" ]; then
             echo "Docker image contains vulnerabilities at critical or high level"
