repos/roboluke
4
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Packages Releases 51 Activity

fix(ci): manually config Trivy
Some checks failed
Validate PR Title / validate (pull_request) Successful in 7s
Details
CI / ci (pull_request) Failing after 1m47s
Details

Browse Source
This commit is contained in:
Luke Tainton 2025-05-31 10:56:31 +01:00
parent f38d9fd3d0
commit aa3c5fbf1f
Signed by: luke
SSH Key Fingerprint: SHA256:D34npKT7UaiT/7gULqu7EPSLWWVAjTjXf4kKfJ/fQBo
1 changed files with 21 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
.gitea/workflows/ci.yml
View File

@ -70,9 +70,16 @@ jobs:
# command: snyk
# args: test --all-projects
- name: Trivy Vulnerability Scan
uses: aquasecurity/trivy-action@0.30.0
- name: Manual Trivy Setup
uses: aquasecurity/setup-trivy@v0.2.0
with:
cache: true
version: v0.61.1
- name: Trivy Vulnerability Scan
uses: aquasecurity/trivy-action@master
with:
skip-setup-trivy: true
scan-type: "fs"
scan-ref: "${{ gitea.workspace }}"
exit-code: "1"
@ -80,3 +87,15 @@ jobs:
format: "table"
severity: "CRITICAL,HIGH,MEDIUM"
scanners: "vuln,secret,misconfig,license"
# - name: Trivy Vulnerability Scan (Docker)
# uses: aquasecurity/trivy-action@master
# with:
# skip-setup-trivy: true
# image-ref: "docker.io/my-organization/my-app:${{ github.sha }}"
# format: "table"
# exit-code: "1"
# ignore-unfixed: true
# vuln-type: 'os,library'
# severity: "CRITICAL,HIGH,MEDIUM"