Skip to content

scan-any-public-image #46

scan-any-public-image

scan-any-public-image #46

Workflow file for this run

name: scan-any-public-image
on:
workflow_dispatch:
inputs:
imageToScan:
description: 'Full image path in any public registry. ex;- mcr.microsoft.com/azuremonitor/containerinsights/cidev:cidevcfa804a1adeb3eb4e82d78f14569e3238e2f6dbd'
required: true
jobs:
scan-image:
runs-on: ubuntu-latest
steps:
- name: Set-workflow-initiator
run: echo "Initiated by - ${GITHUB_ACTOR}"
- name: Run-trivy-scanner-on-docker-image
uses: aquasecurity/trivy-action@master
with:
image-ref: "${{ github.event.inputs.imageToScan }}"
format: 'table'
#ignore format
#output: 'trivy-results.sarif'
severity: 'CRITICAL,HIGH'
vuln-type: 'os,library'
#skip-dirs: '/opt/telegraf,/opt/microsoft/otelcollector'
exit-code: '1'
timeout: '5m0s'