CI: Add image to scan

2024-01-11 00:10:37 +01:00 · 2024-01-11 00:10:37 +01:00 · 7affe70fac
parent 8b54fbb050
commit 7affe70fac
2 changed files with 10 additions and 1 deletions
--- a/.github/workflows/setup-cluster.yml
+++ b/.github/workflows/setup-cluster.yml
@ -19,6 +19,8 @@ jobs:
    steps:
    - name: Checkout code
      uses: actions/checkout@v3
+    - name: Install podman
+      run: sudo apt install podman -y
    - name: Start minikube
      id: minikube
      uses: medyagh/setup-minikube@latest
--- a/.github/workflows/vulnerability-scan.yml
+++ b/.github/workflows/vulnerability-scan.yml
@ -7,7 +7,7 @@ on:

 jobs:
  build:
-    name: Build
+    name: Scan images
    runs-on: ubuntu-20.04
    steps:
      - name: Checkout code
@ -19,3 +19,10 @@ jobs:
          image-ref: 'ghcr.io/bbusse/gtfso-import'
          format: 'sarif'
          output: 'trivy-results.sarif'
+
+      - name: Run Trivy vulnerability scanner
+        uses: aquasecurity/trivy-action@master
+        with:
+          image-ref: 'ghcr.io/bbusse/gtfso-vbb'
+          format: 'sarif'
+          output: 'trivy-results.sarif'