Disable security scan in ci-pr.yml

Added env to control the scan.
spring-cloud · Nov 15, 2024 · 8ebc627 · 8ebc627
1 parent bfa3c51
commit 8ebc627
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/.github/workflows/ci-pr.yml b/.github/workflows/ci-pr.yml
@@ -3,6 +3,9 @@ name: CI PRs
 on:
   pull_request:
 
+env:
+  ENABLE_SECURITY_SCAN: 'false'
+
 jobs:
   build:
     runs-on: ubuntu-latest
@@ -31,13 +34,15 @@ jobs:
     steps:
       - uses: actions/checkout@v4
       - name: Run Trivy vulnerability scanner in repo mode
+        if: ${{ env.ENABLE_SECURITY_SCAN == 'true' }}
         uses: aquasecurity/trivy-action@master
         with:
           scan-type: 'fs'
           ignore-unfixed: true
           format: 'table'
           severity: 'CRITICAL,HIGH'
       - name: 'Scanned'
+        if: ${{ env.ENABLE_SECURITY_SCAN == 'true' }}
         shell: bash
         run: echo "::info ::Scanned"
   done: