Skip to content

Commit

Permalink
BC-8372 - update trivy to an version who cann use the cache (#5329)
Browse files Browse the repository at this point in the history
  • Loading branch information
mamutmk5 authored Nov 7, 2024
1 parent 10bebc1 commit 58e842c
Showing 1 changed file with 2 additions and 9 deletions.
11 changes: 2 additions & 9 deletions .github/workflows/push.yml
Original file line number Diff line number Diff line change
Expand Up @@ -171,20 +171,13 @@ jobs:
contents: read
security-events: write
steps:
- name: Get current date
id: date
run: echo "date=$(date +'%Y-%m-%d')" >> $GITHUB_OUTPUT
- name: Restore cached trivy DBs
uses: actions/cache/restore@v4
with:
path: ${{ github.workspace }}/.cache/trivy
key: cache-trivy-${{ steps.date.outputs.date }}
- name: run trivy vulnerability scanner
uses: aquasecurity/trivy-action@1f6384b6ceecbbc6673526f865b818a2a06b07c9
uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2
with:
image-ref: 'ghcr.io/${{ github.repository }}:${{ needs.branch_meta.outputs.sha }}'
format: 'sarif'
output: 'trivy-results.sarif'
scan-type: 'image'
severity: 'CRITICAL,HIGH'
ignore-unfixed: true
env:
Expand Down

0 comments on commit 58e842c

Please sign in to comment.