Skip to content
This repository has been archived by the owner on Sep 20, 2024. It is now read-only.

chore(deps): bump trivy to v0.48.3 #604

chore(deps): bump trivy to v0.48.3

chore(deps): bump trivy to v0.48.3 #604

Workflow file for this run

---
name: Build
on:
push:
branches:
- main
paths-ignore:
- '*.md'
- 'docs/**'
- 'LICENSE'
- 'NOTICE'
pull_request:
paths-ignore:
- '*.md'
- 'docs/**'
- 'LICENSE'
- 'NOTICE'
# Disable permissions granted to the GITHUB_TOKEN for all the available scopes.
permissions: {}
# Cancel any in-flight jobs for the same PR branch so there's only one active at a time.
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
jobs:
build:
name: Build
runs-on: ubuntu-20.04
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version-file: go.mod
- name: yaml-lint
uses: ibiqlik/action-yamllint@v3
- name: Setup make
run: make setup
- name: Run linter
run: make lint
- name: Run unit tests
run: make test
- name: Run integration tests
run: make test-integration
- name: Run component tests
run: make test-component
- name: Release snapshot
uses: goreleaser/goreleaser-action@v5
with:
version: v1.9.2
args: release --snapshot --skip-publish --rm-dist
- name: Scan image for vulnerabilities
uses: aquasecurity/trivy-action@master
with:
image-ref: "docker.io/aquasec/harbor-scanner-trivy:${{ github.sha }}"
severity: "CRITICAL"
exit-code: "1"