Skip to content

Commit a07b8e8

Browse files
authored
Feature: Scans container images for vulnerabilities with Trivy (#252)
1 parent 4a6c261 commit a07b8e8

File tree

1 file changed

+19
-0
lines changed

1 file changed

+19
-0
lines changed
Lines changed: 19 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,19 @@
1+
name: build
2+
on:
3+
schedule:
4+
- cron: '0 0 */14 * 6' # Run every 14 days on Saturday at midnight
5+
workflow_dispatch:
6+
jobs:
7+
build:
8+
name: Build
9+
runs-on: ubuntu-24.04
10+
steps:
11+
- name: Run Trivy vulnerability scanner
12+
uses: aquasecurity/trivy-action@0.28.0
13+
with:
14+
image-ref: 'tungbq/devops-toolkit:latest'
15+
format: 'table'
16+
exit-code: '1'
17+
ignore-unfixed: true
18+
vuln-type: 'os,library'
19+
severity: 'CRITICAL,HIGH'

0 commit comments

Comments
 (0)