|
|
@ -10,7 +10,7 @@ jobs:
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
|
|
steps:
|
|
|
|
- name: Checkout code
|
|
|
|
- name: Checkout code
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
uses: actions/checkout@v3
|
|
|
|
|
|
|
|
|
|
|
|
- name: Build an image from Dockerfile
|
|
|
|
- name: Build an image from Dockerfile
|
|
|
|
run: |
|
|
|
|
run: |
|
|
|
@ -26,6 +26,6 @@ jobs:
|
|
|
|
severity: 'CRITICAL,HIGH'
|
|
|
|
severity: 'CRITICAL,HIGH'
|
|
|
|
|
|
|
|
|
|
|
|
- name: Upload Trivy scan results to GitHub Security tab
|
|
|
|
- name: Upload Trivy scan results to GitHub Security tab
|
|
|
|
uses: github/codeql-action/upload-sarif@v2
|
|
|
|
uses: github/codeql-action/upload-sarif@v3
|
|
|
|
with:
|
|
|
|
with:
|
|
|
|
sarif_file: 'trivy-results.sarif'
|
|
|
|
sarif_file: 'trivy-results.sarif'
|
|
|
|