Mirrors/coredns
1
0
Fork 0
mirror of https://github.com/coredns/coredns.git synced 2025-10-27 16:24:19 -04:00
Code Issues Packages Projects Releases Wiki Activity

Fix trivy scan (#5967)

Browse Source 
This PR fixes trivy scan caused by recent change in upsteam

Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
This commit is contained in:
Yong Tang
2023-03-13 11:31:24 -07:00
committed by GitHub
parent 1c09052493
commit 1258e3b2f2
1 changed files with 4 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
.github/workflows/trivy-scan.yaml vendored
View File

@@ -1,7 +1,7 @@
name: Trivy Nightly Scan
on:
schedule:
- cron: '0 2 * * 5' #Run at 2AM UTC on every Friday
- cron: '0 2 * * 5' # Run at 2AM UTC on every Friday
permissions: read-all
jobs:
@@ -20,15 +20,14 @@ jobs:
- name: Checkout code
uses: actions/checkout@v3
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@1f0aa582c8c8f5f7639610d6d38baddfea4fdcee # master
uses: aquasecurity/trivy-action@1f0aa582c8c8f5f7639610d6d38baddfea4fdcee # master
with:
image-ref: 'docker.io/coredns/coredns:${{ matrix.versions }}'
severity: 'CRITICAL,HIGH'
format: 'template'
template: '@/contrib/sarif.tpl'
format: 'sarif'
output: 'trivy-results.sarif'
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@16964e90ba004cdf0cd845b866b5df21038b7723 # v2.2.6
uses: github/codeql-action/upload-sarif@16964e90ba004cdf0cd845b866b5df21038b7723 # v2.2.6
with:
sarif_file: 'trivy-results.sarif'