Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump docker/scout-action from 1.0.9 to 1.1.0 #86

Merged
merged 1 commit into from
Nov 15, 2023
+3 −3
Merged

Bump docker/scout-action from 1.0.9 to 1.1.0 #86

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 3 additions & 3 deletions .github/workflows/ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -153,7 +153,7 @@ jobs:

# Docker-Scout - Create SBOM
- name: Create SBOM
uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09
uses: docker/scout-action@704685e6e6dc4462258fb11d36d3a14ca7bda1e6
id: docker-scout-sbom
continue-on-error: true
if: env.CONTAINER_PUSH == 'true' && vars.DOCKERHUB_USERNAME != ''
Expand All @@ -165,7 +165,7 @@ jobs:

# vulnerability scan the image for main branch and upload the results as a SARIF file
- name: Analyze for critical and high CVEs
uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09
uses: docker/scout-action@704685e6e6dc4462258fb11d36d3a14ca7bda1e6
id: docker-scout-cves
continue-on-error: true
if: env.CONTAINER_PUSH == 'true' && github.ref_name == 'main'
Expand All @@ -184,7 +184,7 @@ jobs:

# vulnerability scanning to verify PRs
- name: Docker Scout compare
uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09
uses: docker/scout-action@704685e6e6dc4462258fb11d36d3a14ca7bda1e6
id: pr-compare
if: github.event_name == 'pull_request' && vars.DOCKERHUB_USERNAME != ''
with:
Expand Down