Skip to content

:dependabot: github-actions(deps): Bump aquasecurity/trivy-action from 0.25.0 to 0.26.0 #37

:dependabot: github-actions(deps): Bump aquasecurity/trivy-action from 0.25.0 to 0.26.0

:dependabot: github-actions(deps): Bump aquasecurity/trivy-action from 0.25.0 to 0.26.0 #37

Workflow file for this run

---
name: 🩻 Scan
on:
pull_request:
branches:
- main
permissions: {}
jobs:
scan:
name: Scan
runs-on: ubuntu-latest
permissions:
contents: read
steps:
- name: Checkout
id: checkout
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
- name: Build
id: build
shell: bash
env:
IMAGE_NAME: ghcr.io/${{ github.repository }}
IMAGE_TAG: ${{ github.sha }}
run: |
make build
- name: Scan
id: scan
uses: aquasecurity/trivy-action@a20de5420d57c4102486cdd9578b45609c99d7eb # v0.26.0
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
with:
image-ref: ghcr.io/${{ github.repository }}:${{ github.sha }}
severity: HIGH,CRITICAL
exit-code: 1