Skip to content

Commit

Permalink
ci(build): fetch Trivy DB from aws to prevent TOOMANYREQUESTS from gh…
Browse files Browse the repository at this point in the history
…cr.io

Signed-off-by: Benjamin Pinchon <[email protected]>
  • Loading branch information
mydoomfr committed Oct 29, 2024
1 parent fa99da8 commit 44c8ef3
Showing 1 changed file with 6 additions and 4 deletions.
10 changes: 6 additions & 4 deletions .github/workflows/build.yml
Original file line number Diff line number Diff line change
Expand Up @@ -63,10 +63,12 @@ jobs:
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0
if: github.event_name != 'pull_request'
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
with:
image-ref: ${{ inputs.image-name }}:${{ steps.meta.outputs.version }}
format: 'table'
exit-code: '1'
format: "table"
exit-code: "1"
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
vuln-type: "os,library"
severity: "CRITICAL,HIGH"

0 comments on commit 44c8ef3

Please sign in to comment.