Skip to content

chore(deps): bump docker/login-action from 4.2.0 to 4.4.0 #27

chore(deps): bump docker/login-action from 4.2.0 to 4.4.0

chore(deps): bump docker/login-action from 4.2.0 to 4.4.0 #27

Workflow file for this run

name: Trivy Security Scan
on:
push:
branches: [main]
pull_request:
schedule:
- cron: '0 6 * * 1'
permissions:
contents: read
security-events: write
jobs:
trivy-fs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
- name: Run Trivy filesystem scan
uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 # v0.36.0
with:
scan-type: fs
scan-ref: .
format: sarif
output: trivy-results.sarif
severity: CRITICAL,HIGH
exit-code: '0'
- name: Upload Trivy SARIF to GitHub Security
if: always()
uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4
with:
sarif_file: trivy-results.sarif
category: trivy-fs