From 4de37c1fe7d65ab5cd2c8b63b5c77abd61dab89c Mon Sep 17 00:00:00 2001
From: nvminhtue <nvminhtue@gmail.com>
Date: Tue, 9 Jan 2024 21:54:02 +0700
Subject: [PATCH] [#227] Update trivy scanner

---
 .../versionControl/github/.github/workflows/lint.yml   | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/templates/addons/versionControl/github/.github/workflows/lint.yml b/templates/addons/versionControl/github/.github/workflows/lint.yml
index 814bb8c7..b01be356 100644
--- a/templates/addons/versionControl/github/.github/workflows/lint.yml
+++ b/templates/addons/versionControl/github/.github/workflows/lint.yml
@@ -36,13 +36,15 @@ jobs:
         uses: aquasecurity/trivy-action@0.12.0
         with:
           image-ref: '.'
-          scan-type: 'fs'
-          ignore-unfixed: true
+          scan-type: 'config'
+          hide-progress: false
           format: 'sarif'
           output: 'trivy-results.sarif'
+          exit-code: '1'
+          ignore-unfixed: true
           trivy-config: trivy.yaml
 
-    - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+      - name: Upload Trivy scan results to GitHub Security tab
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'