github/mealie
1
0
Fork 0
mirror of https://github.com/mealie-recipes/mealie.git synced 2025-02-23 10:27:23 -08:00
Code Issues Packages Projects Releases Wiki Activity
mealie/.github/workflows/partial-trivy-container-scanning.yml
Kuchenpirat dacd0acff6
dev: add secondary db to trivy (#4434)
2024-10-24 13:48:25 +00:00

34 lines
868 B
YAML
Raw Permalink Blame History

name: Trivy Container Scanning
on:
workflow_call:
jobs:
build:
name: Build and Scan Container
runs-on: ubuntu-latest
strategy:
fail-fast: true
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Build Dockerfile
run: |
docker build -t mealie --file=./docker/Dockerfile .
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
with:
ignore-unfixed: true
image-ref: "mealie"
format: "sarif"
output: "trivy-results.sarif"
env:
TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: "trivy-results.sarif"
Reference in New Issue View Git Blame Copy Permalink