Skip to content

Commit 83094f8

Browse files
committed
Added security permissions and error handling to CI/CD pipeline
1 parent 2c18934 commit 83094f8

File tree

1 file changed

+4
-0
lines changed

1 file changed

+4
-0
lines changed

.github/workflows/ci-cd.yml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -45,6 +45,9 @@ jobs:
4545
security-scan:
4646
name: Security Scan
4747
runs-on: ubuntu-latest
48+
permissions:
49+
contents: read
50+
security-events: write
4851

4952
steps:
5053
- name: Checkout code
@@ -63,6 +66,7 @@ jobs:
6366
if: always()
6467
with:
6568
sarif_file: 'trivy-results.sarif'
69+
continue-on-error: true
6670

6771
docker-build:
6872
name: Docker Build & Push

0 commit comments

Comments
 (0)