Skip to content

Commit

Permalink
Add trivy container scan to end of docker build workflow
Browse files Browse the repository at this point in the history
  • Loading branch information
@afwillia
afwillia committed Mar 6, 2024
1 parent 9360ea8 commit 0b5fd50
Showing 1 changed file with 8 additions and 0 deletions.
8 changes: 8 additions & 0 deletions .github/workflows/docker_build.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -54,4 +54,12 @@ jobs:
build-args: |
DCA_VERSION=${{ env.DCA_VERSION }}
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
with:
image-ref: '${{ env.IMAGE_PATH }}:${{ env.DCA_VERSION }}'
format: 'table'
exit-code: '1'
ignore-unfixed: true
severity: 'CRITICAL,HIGH'

0 comments on commit 0b5fd50

Please sign in to comment.