Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

BC-8372 - update trivy to an version who cann use the cache #5329

Merged
merged 3 commits into from
Nov 7, 2024
Merged

BC-8372 - update trivy to an version who cann use the cache #5329

Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
45c6309
BC-8372 - trivy update
mamutmk5 Nov 7, 2024
17e4a14
BC-8372 - set trivy to scan docker image
mamutmk5 Nov 7, 2024
ecc9d16
BC-8372 - remove node needed cache operations
mamutmk5 Nov 7, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 2 additions & 9 deletions .github/workflows/push.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -171,20 +171,13 @@ jobs:
contents: read
security-events: write
steps:
- name: Get current date
id: date
run: echo "date=$(date +'%Y-%m-%d')" >> $GITHUB_OUTPUT
- name: Restore cached trivy DBs
uses: actions/cache/restore@v4
with:
path: ${{ github.workspace }}/.cache/trivy
key: cache-trivy-${{ steps.date.outputs.date }}
- name: run trivy vulnerability scanner
uses: aquasecurity/trivy-action@1f6384b6ceecbbc6673526f865b818a2a06b07c9
uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2
with:
image-ref: 'ghcr.io/${{ github.repository }}:${{ needs.branch_meta.outputs.sha }}'
format: 'sarif'
output: 'trivy-results.sarif'
scan-type: 'image'
severity: 'CRITICAL,HIGH'
ignore-unfixed: true
env:
Expand Down
Loading