Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump docker/scout-action from 1.1.0 to 1.2.0 #90

Merged
merged 1 commit into from
Nov 27, 2023
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 3 additions & 3 deletions .github/workflows/ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -153,7 +153,7 @@ jobs:

# Docker-Scout - Create SBOM
- name: Create SBOM
uses: docker/scout-action@704685e6e6dc4462258fb11d36d3a14ca7bda1e6
uses: docker/scout-action@7c61653c2736d21969dd4593fde76c670d4a86cb
id: docker-scout-sbom
continue-on-error: true
if: env.CONTAINER_PUSH == 'true' && vars.DOCKERHUB_USERNAME != ''
Expand All @@ -165,7 +165,7 @@ jobs:

# vulnerability scan the image for main branch and upload the results as a SARIF file
- name: Analyze for critical and high CVEs
uses: docker/scout-action@704685e6e6dc4462258fb11d36d3a14ca7bda1e6
uses: docker/scout-action@7c61653c2736d21969dd4593fde76c670d4a86cb
id: docker-scout-cves
continue-on-error: true
if: env.CONTAINER_PUSH == 'true' && github.ref_name == 'main'
Expand All @@ -184,7 +184,7 @@ jobs:

# vulnerability scanning to verify PRs
- name: Docker Scout compare
uses: docker/scout-action@704685e6e6dc4462258fb11d36d3a14ca7bda1e6
uses: docker/scout-action@7c61653c2736d21969dd4593fde76c670d4a86cb
id: pr-compare
if: github.event_name == 'pull_request' && vars.DOCKERHUB_USERNAME != ''
with:
Expand Down