Skip to content

Commit

Permalink
plugin ledger connector quorum trivy scan test
Browse files Browse the repository at this point in the history
  • Loading branch information
aldousalvarez committed Apr 4, 2024
1 parent ebea0f2 commit 90b4340
Show file tree
Hide file tree
Showing 2 changed files with 34 additions and 1 deletion.
33 changes: 33 additions & 0 deletions .github/workflows/trivy-container-scan.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
name: trivy-container-image-scan

on:
push:
pull_request:
# Publish `main` as Docker `latest` image.
branches:
- main

# Publish `v1.2.3` tags as releases.
tags:
- v*


jobs:

build:
name: Scan cactus-plugin-ledger-connector-quorum table image
runs-on: ubuntu-22.04
steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Build an image from Dockerfile
run: DOCKER_BUILDKIT=1 docker build . -f ./packages/cactus-plugin-ledger-connector-quorum/Dockerfile -t cactus-plugin-ledger-connector-quorum
- name: Run Trivy vulnerability scan for cactus-plugin-ledger-connector-quorum
uses: aquasecurity/[email protected]
with:
image-ref: 'cactus-plugin-ledger-connector-quorum'
format: 'table'
exit-code: '0'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
2 changes: 1 addition & 1 deletion packages/cactus-plugin-ledger-connector-quorum/Dockerfile
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
FROM ghcr.io/hyperledger/cactus-cmd-api-server:v1.0.0
FROM ghcr.io/hyperledger/cactus-cmd-api-server:2024-03-18-8ddc02d

ARG NPM_PKG_VERSION=latest

Expand Down

0 comments on commit 90b4340

Please sign in to comment.