CI: Add image to scan
This commit is contained in:
parent
8b54fbb050
commit
7affe70fac
2
.github/workflows/setup-cluster.yml
vendored
2
.github/workflows/setup-cluster.yml
vendored
@ -19,6 +19,8 @@ jobs:
|
|||||||
steps:
|
steps:
|
||||||
- name: Checkout code
|
- name: Checkout code
|
||||||
uses: actions/checkout@v3
|
uses: actions/checkout@v3
|
||||||
|
- name: Install podman
|
||||||
|
run: sudo apt install podman -y
|
||||||
- name: Start minikube
|
- name: Start minikube
|
||||||
id: minikube
|
id: minikube
|
||||||
uses: medyagh/setup-minikube@latest
|
uses: medyagh/setup-minikube@latest
|
||||||
|
9
.github/workflows/vulnerability-scan.yml
vendored
9
.github/workflows/vulnerability-scan.yml
vendored
@ -7,7 +7,7 @@ on:
|
|||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
build:
|
build:
|
||||||
name: Build
|
name: Scan images
|
||||||
runs-on: ubuntu-20.04
|
runs-on: ubuntu-20.04
|
||||||
steps:
|
steps:
|
||||||
- name: Checkout code
|
- name: Checkout code
|
||||||
@ -19,3 +19,10 @@ jobs:
|
|||||||
image-ref: 'ghcr.io/bbusse/gtfso-import'
|
image-ref: 'ghcr.io/bbusse/gtfso-import'
|
||||||
format: 'sarif'
|
format: 'sarif'
|
||||||
output: 'trivy-results.sarif'
|
output: 'trivy-results.sarif'
|
||||||
|
|
||||||
|
- name: Run Trivy vulnerability scanner
|
||||||
|
uses: aquasecurity/trivy-action@master
|
||||||
|
with:
|
||||||
|
image-ref: 'ghcr.io/bbusse/gtfso-vbb'
|
||||||
|
format: 'sarif'
|
||||||
|
output: 'trivy-results.sarif'
|
||||||
|
Loading…
Reference in New Issue
Block a user