chris.bono@gmail.com

Add a flag named `enableSecurityScan` to manage execution of trivy scan that will be `false` by default.
spring-cloud · Nov 14, 2024 · f5ace9a · f5ace9a
1 parent e056251
commit f5ace9a
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/.github/workflows/common.yml b/.github/workflows/common.yml
@@ -18,6 +18,11 @@ on:
         required: false
         default: '1'
         description: 'Maven Thread Option. Examples 0.5C, 2'
+      enableSecurityScan:
+        type: boolean
+        required: false
+        default: false
+        description: 'Enable security scan with Trivy'
     secrets:
       DOCKERHUB_USERNAME:
       DOCKERHUB_TOKEN:
@@ -38,7 +43,7 @@ env:
 
 jobs:
   scan:
-    if: ${{ github.repository == 'spring-cloud/stream-applications' }}
+    if: ${{ inputs.enableSecurityScan && github.repository == 'spring-cloud/stream-applications' }}
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v2