chore(deps): update dependency openvox-agent to v8.15.0-1+ubuntu24.04… #26

Workflow file for this run

.github/workflows/security_scanning.yml at 2b6b022

	---
	name: Security Scanning 🕵️

	on:
	push:
	branches:
	- main
	pull_request:
	branches:
	- main

	jobs:
	setup-matrix:
	runs-on: ubuntu-latest
	outputs:
	matrix: ${{ steps.set-matrix.outputs.matrix }}
	steps:
	- name: Source checkout
	uses: actions/checkout@v4

	- name: 'Setup yq'
	uses: dcarbone/[email protected]

	- id: set-matrix
	run: echo "matrix=$(yq -o json build_versions.yaml \| jq -c)" >> $GITHUB_OUTPUT

	scan_ci_container:
	name: 'Scan CI container'
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write
	needs: setup-matrix
	strategy:
	matrix: ${{ fromJson(needs.setup-matrix.outputs.matrix) }}
	steps:
	- name: Checkout repository
	uses: actions/checkout@v4

	- name: Extract version number
	id: extract_version
	uses: actions/github-script@v7
	with:
	script: \|
	const agentVersion = '${{ matrix.agent_version }}';
	const version = agentVersion.split('-')[0];
	core.setOutput('version', version);

	- name: Build CI container
	uses: docker/build-push-action@v6
	with:
	tags: 'ci/openvoxagent:${{ steps.extract_version.outputs.version }}'
	context: .
	file: Containerfile
	push: false
	build-args: \|
	OPENVOX_RELEASE=${{ matrix.release }}
	OPENVOXAGENT_VERSION=${{ matrix.agent_version }}

	- name: Scan image with Anchore Grype
	uses: anchore/scan-action@v6
	id: scan
	with:
	image: 'ci/openvoxagent:${{ steps.extract_version.outputs.version }}'
	fail-build: false

	- name: Inspect action SARIF report
	run: jq . ${{ steps.scan.outputs.sarif }}

	- name: Upload Anchore scan SARIF report
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: ${{ steps.scan.outputs.sarif }}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update dependency openvox-agent to v8.15.0-1+ubuntu24.04… #26

Workflow file

chore(deps): update dependency openvox-agent to v8.15.0-1+ubuntu24.04… #26

Jobs

Run details

Workflow file for this run