mirror of
https://github.com/danswer-ai/danswer.git
synced 2025-04-02 08:58:11 +02:00
trivy test
This commit is contained in:
Richard Kuo (Danswer)
parent
07d75b04d1
commit
4c230f92ea
5
.github/workflows/nightly-scan-licenses.yml
vendored
5
.github/workflows/nightly-scan-licenses.yml
vendored
@ -64,14 +64,15 @@ jobs:
|
||||
# with a huge amount of items. Work out the issues before enabling upload.
|
||||
- name: Run Trivy vulnerability scanner in repo mode
|
||||
if: always()
|
||||
uses: aquasecurity/trivy-action@0.28.0
|
||||
uses: aquasecurity/trivy-action@0.29.0
|
||||
with:
|
||||
scan-type: fs
|
||||
scan-ref: .
|
||||
scanners: license
|
||||
format: table
|
||||
severity: HIGH,CRITICAL
|
||||
# format: sarif
|
||||
# output: trivy-results.sarif
|
||||
severity: HIGH,CRITICAL
|
||||
|
||||
# - name: Upload Trivy scan results to GitHub Security tab
|
||||
# uses: github/codeql-action/upload-sarif@v3
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user