add multiple sources for trivy

soerenschneider · soerenschneider · commit c34fd6fe3668 · 2024-12-06T13:39:29.000+01:00
diff --git a/.github/workflows/security-scanners.yaml b/.github/workflows/security-scanners.yaml
@@ -15,6 +15,8 @@ jobs:
       - uses: "actions/checkout@v4"
       - name: "Run Trivy vulnerability scanner in fs mode"
         uses: "aquasecurity/trivy-action@master"
+        env:
+          TRIVY_DB_REPOSITORY: "ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db"
         with:
           scan-type: "fs"
           scan-ref: "."
