-
Notifications
You must be signed in to change notification settings - Fork 22
40 lines (40 loc) · 1005 Bytes
/
grype.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
name: Grype
on:
workflow_call:
inputs:
image:
required: true
type: string
digest:
required: true
type: string
secrets:
registry_user:
required: true
registry_password:
required: true
jobs:
grype:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Login to Docker Hub
uses: docker/login-action@v2
with:
username: ${{ secrets.registry_user }}
password: ${{ secrets.registry_password }}
- uses: actions/setup-java@v3
with:
distribution: temurin
java-version: 11
- name: Setup Gradle
uses: gradle/gradle-build-action@v2
with:
cache-read-only: false
arguments: ${{ inputs.image }}:grype ${{ inputs.digest }} --info
- uses: actions/upload-artifact@v3
if: always()
with:
name: Grype Reports
path: build/**/*-grype.*