Skip to content

Bump aquasecurity/trivy-action from 0.25.0 to 0.26.0 #650

Bump aquasecurity/trivy-action from 0.25.0 to 0.26.0

Bump aquasecurity/trivy-action from 0.25.0 to 0.26.0 #650

Workflow file for this run

---
name: Build and Test
on:
push:
pull_request:
jobs:
check:
name: Check
runs-on: ubuntu-latest
steps:
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version: '^1.21'
- name: Checkout Code
uses: actions/checkout@v4
- name: Lint Go Code
run: |
go install honnef.co/go/tools/cmd/staticcheck@latest
make check
vet:
name: Vet
runs-on: ubuntu-latest
steps:
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version: '^1.21'
- name: Checkout Code
uses: actions/checkout@v4
- name: Vet Go code
run: make vet
test:
name: Test
runs-on: ubuntu-latest
steps:
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version: '^1.21'
- name: Checkout Code
uses: actions/checkout@v4
- name: Test
run: make test
build:
name: Build
runs-on: ubuntu-latest
needs: [check, vet, test]
steps:
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version: '^1.21'
- name: Checkout Code
uses: actions/checkout@v4
- name: build
run: make build
- name: Trivy scan
uses: aquasecurity/[email protected]
with:
scan-type: "fs"
ignore-unfixed: true
format: "table"
exit-code: "1"
vuln-type: "os,library"
severity: "CRITICAL,HIGH"