From fed75c24030716e780951b5cb0a74884606eeca3 Mon Sep 17 00:00:00 2001
From: Aaron Reed <aaronreed708@gmail.com>
Date: Wed, 6 Dec 2023 11:41:04 -0500
Subject: [PATCH] finos/a11y-theme-builder#481: adding severity threshold to
 docker scanning to fail if threshold exceeded

---
 .github/workflows/publish-docker.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/publish-docker.yml b/.github/workflows/publish-docker.yml
index a3a12f14..efd92313 100644
--- a/.github/workflows/publish-docker.yml
+++ b/.github/workflows/publish-docker.yml
@@ -5,6 +5,8 @@ on:
   push:
     branches:
       - 'main'
+      - 'dev'
+      - 'github-action-docker-scanner'
     paths:
       - 'code/src/**'
       - 'code/package.json'
@@ -25,6 +27,7 @@ jobs:
         uses: crazy-max/ghaction-container-scan@dfa7e54dc32045120f06d0bc8d7724860f5db0ad
         with:
           image: user/app:latest
+          severity_threshold: HIGH
   push-to-registry:
     name: Push Docker image to Docker Hub
     needs: docker-scan