htwkmooc/poseidon
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #37 from openHPI/trivy

Browse Source 
Checkout code for trivy analysis
This commit is contained in:
Sebastian Serth
2021-11-17 09:00:14 +01:00
committed by GitHub
parent 051c62b43b fef7d951d2
commit aa87556a45
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
.github/workflows/ci.yml vendored
View File

@ -86,6 +86,8 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
needs: [ compile ] needs: [ compile ]
steps: steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Run Trivy vulnerability scanner in repo mode - name: Run Trivy vulnerability scanner in repo mode
uses: aquasecurity/trivy-action@master uses: aquasecurity/trivy-action@master
with: with:
@ -94,7 +96,6 @@ jobs:
template: '@/contrib/sarif.tpl' template: '@/contrib/sarif.tpl'
output: 'trivy-results.sarif' output: 'trivy-results.sarif'
severity: 'HIGH,CRITICAL' severity: 'HIGH,CRITICAL'
exit-code: '1'
- name: Upload Trivy scan results to GitHub Security tab - name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v1 uses: github/codeql-action/upload-sarif@v1
with: with: