chore: remove trivy scans due to aquasecurity/trivy-action#408

idealo · Jan 22, 2025 · e3ee3b4 · e3ee3b4
1 parent 5efec21
commit e3ee3b4
Show file tree

Hide file tree

Showing 2 changed files with 0 additions and 62 deletions.
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -18,8 +18,6 @@ permissions:
   pull-requests: write
   # used to publish the docker image
   packages: write
-  # used by trivy
-  security-events: write
 
 jobs:
   verify:
@@ -88,19 +86,3 @@ jobs:
             @semantic-release/exec
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-
-      - name: Get Image Name
-        id: get-image-name
-        run: echo "image-name=$(mvn help:evaluate -Dexpression=image.name -q -DforceStdout)" >> $GITHUB_OUTPUT
-
-      - name: Scan Docker Image for Vulnerabilities
-        uses: aquasecurity/trivy-action@0.29.0
-        with:
-          image-ref: ${{ steps.get-image-name.outputs.image-name }}
-          format: sarif
-          output: trivy-results.sarif
-
-      - name: Upload Trivy Results to GitHub Security Tab
-        uses: github/codeql-action/upload-sarif@v3
-        with:
-          sarif_file: trivy-results.sarif
diff --git a/.github/workflows/scan-docker-image.yml b/.github/workflows/scan-docker-image.yml