From da120ee0be00ee33b05281c8c74d604574ded191 Mon Sep 17 00:00:00 2001
From: Astound <kirito@disroot.org>
Date: Mon, 20 Jan 2025 07:17:10 +0800
Subject: update trivy action

---
 .gitea/workflows/release.yaml | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

(limited to '.gitea/workflows/release.yaml')

diff --git a/.gitea/workflows/release.yaml b/.gitea/workflows/release.yaml
index ac67bf4..ec7f4dd 100644
--- a/.gitea/workflows/release.yaml
+++ b/.gitea/workflows/release.yaml
@@ -88,14 +88,13 @@ jobs:
             ${{ secrets.DOCKER_REGISTRY_USER}}/hypermirror:v${{ steps.meta.outputs.IMAGE_VERSION }}
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: astounds/trivy-action@v1
         with:
-          image-ref: ${{ secrets.DOCKER_REGISTRY_USER}}/hypermirror:latest
+          image: ${{ secrets.DOCKER_REGISTRY_USER}}/hypermirror:latest
+          severity: 'CRITICAL,HIGH'
+          pkg-types: 'os'
           format: 'table'
           exit-code: '1'
-          ignore-unfixed: true
-          vuln-type: 'os'
-          severity: 'CRITICAL,HIGH'
 
       - name: Push Docker image
         uses: docker/build-push-action@v6
-- 
cgit v1.2.3