steve
/
geoserver
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #43 from ahennr/trivy-results 

Configure trivy action to upload results to security tab
pull/46/head
Nils Bühner 2024-01-02 10:16:40 +01:00 committed by GitHub
parent 4343dca5d3 8eb35730e3
commit 0966018436
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
.github/workflows/trivy.yml vendored
View File

@ -15,8 +15,13 @@ jobs:
- name: Run trivy - name: Run trivy
uses: aquasecurity/trivy-action@master uses: aquasecurity/trivy-action@master
with: with:
image-ref: 'geoserver-docker.osgeo.org/geoserver:${{ github.sha }}'
format: 'table' format: 'table'
ignore-unfixed: true ignore-unfixed: true
vuln-type: 'os,library' image-ref: 'geoserver-docker.osgeo.org/geoserver:${{ github.sha }}'
output: 'trivy-results.sarif'
severity: 'CRITICAL,HIGH' severity: 'CRITICAL,HIGH'
vuln-type: 'os,library'
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: 'trivy-results.sarif'