diff options
| author | Astound <kirito@disroot.org> | 2025-01-20 10:31:10 +0800 |
|---|---|---|
| committer | Astound <kirito@disroot.org> | 2025-01-20 10:31:10 +0800 |
| commit | ef7466cb9016b7f054e6c87dbc1db53a4ddb0a3b (patch) | |
| tree | b6e45d0679e5cb12f5540b497dca1c3c42d419e2 | |
| parent | 69372e1c9cfa72b53e1605cd8bd0dfb061fd6730 (diff) | |
| download | yt-local-docker-ef7466cb9016b7f054e6c87dbc1db53a4ddb0a3b.tar.lz yt-local-docker-ef7466cb9016b7f054e6c87dbc1db53a4ddb0a3b.tar.xz yt-local-docker-ef7466cb9016b7f054e6c87dbc1db53a4ddb0a3b.zip | |
| -rw-r--r-- | .gitea/workflows/release.yaml | 17 |
1 files changed, 6 insertions, 11 deletions
diff --git a/.gitea/workflows/release.yaml b/.gitea/workflows/release.yaml index 776bf38..4e871a8 100644 --- a/.gitea/workflows/release.yaml +++ b/.gitea/workflows/release.yaml @@ -47,7 +47,6 @@ jobs: linux/amd64 linux/arm/v7 linux/arm64 - linux/386 push: false no-cache: true tags: | @@ -55,19 +54,15 @@ jobs: ${{ secrets.DOCKER_REGISTRY_USER}}/yt-local:v0.2.19 - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@0.27.0 + uses: astounds/trivy-action@v1 with: - image-ref: ${{ secrets.DOCKER_REGISTRY_USER}}/yt-local:latest + image: ${{ secrets.DOCKER_REGISTRY_USER}}/yt-local:latest + severity: 'CRITICAL,HIGH' + pkg-types: 'os' format: 'table' - exit-code: '1' ignore-unfixed: true - vuln-type: 'os' - severity: 'CRITICAL,HIGH' - env: - TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2 - TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1 - TRIVY_SKIP_DB_UPDATE: false - TRIVY_SKIP_JAVA_DB_UPDATE: false + exit-code: '1' + version: 'v0.58.2' - name: Push Docker image uses: docker/build-push-action@v6 |