From b32dab89eebabb39f70c52451289afae29af046a Mon Sep 17 00:00:00 2001
From: Steven Bal <steven@maykinmedia.nl>
Date: Tue, 24 Dec 2024 14:37:22 +0100
Subject: [PATCH] :construction_workern: [maykinmedia/objects-api#463] Add
 trivy image scan

---
 .github/workflows/ci.yml             |  5 +++--
 .github/workflows/trivy-db-cache.yml | 11 +++++++++++
 2 files changed, 14 insertions(+), 2 deletions(-)
 create mode 100644 .github/workflows/trivy-db-cache.yml

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index fea9d990..b016cc60 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -86,17 +86,18 @@ jobs:
         id: image-name
 
   open-api-ci:
-    uses: maykinmedia/open-api-workflows/.github/workflows/ci.yml@v1
+    uses: maykinmedia/open-api-workflows/.github/workflows/ci.yml@v3.0.2
     needs:
       - store-reusable-workflow-vars
     with:
       main-branch: 'master'
       run-docs: true
+      django-settings-module: objects.conf.ci
       python-version: '3.11'
       docker-image-name: ${{ needs.store-reusable-workflow-vars.outputs.image-name }}
 
   open-api-publish:
-    uses: maykinmedia/open-api-workflows/.github/workflows/publish.yml@v3.0.1
+    uses: maykinmedia/open-api-workflows/.github/workflows/publish.yml@v3.0.2
     needs:
       - store-reusable-workflow-vars
       - open-api-ci
diff --git a/.github/workflows/trivy-db-cache.yml b/.github/workflows/trivy-db-cache.yml
new file mode 100644
index 00000000..f6fb9fcd
--- /dev/null
+++ b/.github/workflows/trivy-db-cache.yml
@@ -0,0 +1,11 @@
+
+name: Call Update Trivy Cache
+
+on:
+  workflow_dispatch: # Manual trigger for testing purposes
+  schedule:
+    - cron: '51 0 * * *'  # Run daily
+
+jobs:
+  call-update-trivy-cache:
+    uses: maykinmedia/open-api-workflows/.github/workflows/ci.yml@v3.0.2