Skip to content

ECT-1750 Security Updates #10

ECT-1750 Security Updates

ECT-1750 Security Updates #10

Workflow file for this run

name: Trivy Scan
on: [pull_request]
jobs:
build:
name: Build
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: Build an image from Dockerfile
run: |
docker build -t arculix/geocoder:${{ github.sha }} .
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
with:
image-ref: "arculix/geocoder:${{ github.sha }}"
format: "table"
exit-code: "1"
ignore-unfixed: true
vuln-type: "os,library"
severity: "CRITICAL,HIGH"
skip-dirs: "/app/geonames_dump"