Skip to content

Commit

Permalink
Update main.yml
Browse files Browse the repository at this point in the history
  • Loading branch information
youngandbeautifulz authored Aug 13, 2024
1 parent 180bfa6 commit 88f5a31
Showing 1 changed file with 24 additions and 1 deletion.
25 changes: 24 additions & 1 deletion .github/workflows/main.yml
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ on: [push]

jobs:
sast_scan:
name: Rub bandit scan
name: Run bandit scan
runs-on: ubuntu-latest

steps:
Expand All @@ -28,3 +28,26 @@ jobs:
with:
name: bandit-findings
path: bandit-report.json

image_scan:
name: build image and run image scan
runs-on: ubuntu-latest

steps:
- name: Checkout code
uses: actions/checkout@v2

- name: Install docker
uses: docker-practice/actions-setup-docker@v1
with:
docker_version: '20.10.7'

- name: Build docker image
run: docker build -f Dockerfile -t muapp:latest .

- name: Scan image
run: |
curl -fsSL https://raw.githubusercontent.com/docker/scout-cli/main/install.sh -o install-scout.sh
sh install-scout.sh
docker scout quickview
docker scout cves

0 comments on commit 88f5a31

Please sign in to comment.