sig_cloud
/
sig-cloud-instance-images
mirror of https://github.com/rocky-linux/sig-cloud-instance-images.git
4
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
sig-cloud-instance-images/.github/workflows/scan.yml

24 lines
522 B
YAML
Raw Blame History

name: scan
on:
workflow_dispatch:
schedule:
- cron: "0 13 * * *"
jobs:
scan:
name: Scan
runs-on: ubuntu-18.04
steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
with:
image-ref: 'docker.io/library/rockylinux:8'
format: 'table'
exit-code: '1'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
Reference in New Issue View Git Blame Copy Permalink