fix trivyignore path in workflow

NASA-AMMOS · Sep 4, 2024 · afb1521 · afb1521
1 parent e7ae3d1
commit afb1521
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -148,7 +148,7 @@ jobs:
     name: scan ${{ matrix.image }}
     steps:
       - name: Scan ${{ matrix.image }} for vulnerabilities
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.24.0
         with:
           image-ref: ${{ env.REGISTRY }}/${{ env.OWNER }}/${{ matrix.image }}:develop
           ignore-unfixed: true
@@ -158,7 +158,7 @@ jobs:
           template: "@/contrib/html.tpl"
           scanners: "vuln"
           output: "${{ matrix.image }}-results.html"
-          trivyignores: "../.trivyignore"
+          trivyignores: ".github/config/.trivyignore"
 
       - name: Upload ${{ matrix.image }} scan results
         if: always()