File tree Expand file tree Collapse file tree 1 file changed +0
-28
lines changed
Expand file tree Collapse file tree 1 file changed +0
-28
lines changed Original file line number Diff line number Diff line change @@ -115,31 +115,3 @@ jobs:
115115 runs-on : ubuntu-latest
116116 steps :
117117 - run : echo "deploy was successful"
118-
119- trivy-vulnerability-scanning :
120- needs :
121- - build_and_push
122- - branch_meta
123- runs-on : ubuntu-latest
124- permissions :
125- actions : read
126- contents : read
127- security-events : write
128- steps :
129- - name : run trivy vulnerability scanner
130- uses : aquasecurity/trivy-action@0.33.1
131- with :
132- image-ref : ' ghcr.io/${{ github.repository }}:${{ needs.branch_meta.outputs.sha }}'
133- format : ' sarif'
134- output : ' trivy-results.sarif'
135- severity : ' CRITICAL,HIGH'
136- ignore-unfixed : true
137- scan-type : ' image'
138- env :
139- TRIVY_SKIP_DB_UPDATE : true
140- TRIVY_SKIP_JAVA_DB_UPDATE : true
141- - name : upload trivy results
142- if : ${{ always() }}
143- uses : github/codeql-action/upload-sarif@v3
144- with :
145- sarif_file : ' trivy-results.sarif'
You can’t perform that action at this time.
0 commit comments