From 525d30f602dd690050ed2db27fa566176df75a6b Mon Sep 17 00:00:00 2001 From: dandelany Date: Fri, 6 Dec 2024 12:06:28 -0800 Subject: [PATCH] use alternate repository for trivy vulnerabilities database in Publish workflow --- .github/workflows/publish.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 7e738ee1be..e86ebe24bc 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -151,6 +151,9 @@ jobs: - name: Scan ${{ matrix.image }} for vulnerabilities uses: aquasecurity/trivy-action@0.24.0 + env: + TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db + TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db with: image-ref: ${{ env.REGISTRY }}/${{ env.OWNER }}/${{ matrix.image }}:develop ignore-unfixed: true