aboutsummaryrefslogtreecommitdiffstats
path: root/.gitea
diff options
context:
space:
mode:
Diffstat (limited to '.gitea')
-rw-r--r--.gitea/workflows/release.yaml17
1 files changed, 6 insertions, 11 deletions
diff --git a/.gitea/workflows/release.yaml b/.gitea/workflows/release.yaml
index 776bf38..4e871a8 100644
--- a/.gitea/workflows/release.yaml
+++ b/.gitea/workflows/release.yaml
@@ -47,7 +47,6 @@ jobs:
linux/amd64
linux/arm/v7
linux/arm64
- linux/386
push: false
no-cache: true
tags: |
@@ -55,19 +54,15 @@ jobs:
${{ secrets.DOCKER_REGISTRY_USER}}/yt-local:v0.2.19
- name: Run Trivy vulnerability scanner
- uses: aquasecurity/trivy-action@0.27.0
+ uses: astounds/trivy-action@v1
with:
- image-ref: ${{ secrets.DOCKER_REGISTRY_USER}}/yt-local:latest
+ image: ${{ secrets.DOCKER_REGISTRY_USER}}/yt-local:latest
+ severity: 'CRITICAL,HIGH'
+ pkg-types: 'os'
format: 'table'
- exit-code: '1'
ignore-unfixed: true
- vuln-type: 'os'
- severity: 'CRITICAL,HIGH'
- env:
- TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
- TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
- TRIVY_SKIP_DB_UPDATE: false
- TRIVY_SKIP_JAVA_DB_UPDATE: false
+ exit-code: '1'
+ version: 'v0.58.2'
- name: Push Docker image
uses: docker/build-push-action@v6
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-22 18:21:23 +0000