Skip to content

Commit

Permalink
Fix trivy and remove scorecard, looks like you have to add it via the…
Browse files Browse the repository at this point in the history
… UI?
  • Loading branch information
sarg3nt committed Oct 28, 2024
1 parent 04c75eb commit d2467f7
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 75 deletions.
73 changes: 0 additions & 73 deletions .github/workflows/scorecard.yml

This file was deleted.

4 changes: 2 additions & 2 deletions .github/workflows/trivy.yml
Original file line number Diff line number Diff line change
Expand Up @@ -31,12 +31,12 @@ jobs:

- name: Build an image from Dockerfile
run: |
docker build -t docker.io/my-organization/my-app:${{ github.sha }} .
docker build -t ghcr.io/sarg3nt/go-docker-container:${{ github.sha }} .
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@7b7aa264d83dc58691451798b4d117d53d21edfe
with:
image-ref: 'docker.io/my-organization/my-app:${{ github.sha }}'
image-ref: 'ghcr.io/sarg3nt/go-docker-container:${{ github.sha }}'
format: 'template'
template: '@/contrib/sarif.tpl'
output: 'trivy-results.sarif'
Expand Down

0 comments on commit d2467f7

Please sign in to comment.