build

Merge pull request #136 from geoserver/renovate/github-codeql-action-… #100

	name: build
	on:
	push:
	branches:
	- master
	jobs:
	build:
	name: Build
	runs-on: ubuntu-latest
	steps:
	- name: Checkout code
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
	- name: Build image
	run: docker build -t geoserver-docker.osgeo.org/geoserver:${{ github.sha }} .
	- name: Run trivy
	uses: aquasecurity/trivy-action@master
	with:
	format: 'sarif'
	ignore-unfixed: true
	image-ref: 'geoserver-docker.osgeo.org/geoserver:${{ github.sha }}'
	output: 'trivy-results.sarif'
	severity: 'CRITICAL,HIGH'
	vuln-type: 'os,library'
	- name: Upload Trivy scan results to GitHub Security tab
	uses: github/codeql-action/upload-sarif@6e5455904168f98c75d8e5ad848b4dc4ab3ae77e # v3
	with:
	sarif_file: 'trivy-results.sarif'

Provide feedback