Skip to content

Feature/update angular #9

Feature/update angular

Feature/update angular #9

Workflow file for this run

name: Trivy
on:
pull_request:
branches:
- develop
jobs:
scan:
name: Vulnerability Scan
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/[email protected]
- name: Build an image from Dockerfile
run: |
docker build -t docker.io/gisaia/arlas-wui-iam:${{ github.sha }} .
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
with:
image-ref: "docker.io/gisaia/arlas-wui-iam:${{ github.sha }}"
format: "table"
exit-code: "1"
ignore-unfixed: true
vuln-type: "os,library"
severity: "CRITICAL,HIGH"
trivyignores: .github/workflows/.trivyignore