Skip to content

Commit

Permalink
1.0.49 Update dockerfile security scan
Browse files Browse the repository at this point in the history
  • Loading branch information
@webpwnized
webpwnized committed Oct 15, 2023
1 parent 07839a7 commit 205faca
Show file tree
Hide file tree
Showing 2 changed files with 6 additions and 6 deletions.
10 changes: 5 additions & 5 deletions .github/workflows/run-trivy.yml → ...workflows/scan-dockerfiles-with-trivy.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,24 +7,24 @@ on:
pull_request:
jobs:
build:
name: Run Trivy
name: Run Trivy on Dockerfile
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3
uses: actions/checkout@v4

- name: Run Trivy vulnerability scanner in IaC mode
uses: aquasecurity/trivy-action@master
with:
scan-type: 'config'
hide-progress: false
format: 'sarif'
output: 'trivy-results.sarif'
output: 'dockerfile-trivy-scan-results.sarif'
exit-code: '1'
ignore-unfixed: true
severity: 'CRITICAL,HIGH'
severity: 'CRITICAL,HIGH,MEDIUM'

- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: 'trivy-results.sarif'
sarif_file: 'dockerfile-trivy-scan-results.sarif'
2 changes: 1 addition & 1 deletion version
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
1.0.48
1.0.49

0 comments on commit 205faca

Please sign in to comment.