From 5ce9480540cd2d4b8605779d3862388f6188e6fa Mon Sep 17 00:00:00 2001
From: Ryosuke Tomita <>
Date: Sun, 17 Dec 2023 04:11:20 +0900
Subject: [PATCH] cat

---
 copilot/pipelines/react-app-pipeline/buildspec.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/copilot/pipelines/react-app-pipeline/buildspec.yml b/copilot/pipelines/react-app-pipeline/buildspec.yml
index 91e4371..32355d3 100644
--- a/copilot/pipelines/react-app-pipeline/buildspec.yml
+++ b/copilot/pipelines/react-app-pipeline/buildspec.yml
@@ -66,7 +66,8 @@ phases:
         done;
       - ls -lah ./infrastructure
       # Run trivy scan on the docker images.
-      - docker run --rm -v /var/run/docker.sock:/var/run/docker.sock ghcr.io/aquasecurity/trivy:canary --exit-code 1 --severity HIGH,CRITICAL --no-progress --format json -o ./trivy-results.json $(jq -r '.services[].image' ./infrastructure/manifest.json)
+      - docker run --rm -v /var/run/docker.sock:/var/run/docker.sock ghcr.io/aquasecurity/trivy:canary image --vuln-type os --no-progress --format table -o container-scanning-report.txt --severity CRITICAL,HIGH $(jq -r '.services[].image' ./infrastructure/manifest.json)
+      - cat container-scanning-report.txt
 artifacts:
   files:
     - "infrastructure/*"