Skip to content

Commit

Permalink
chore: adds skip-dirs to trivy image scan (#116)
Browse files Browse the repository at this point in the history 
Metadata pulled into the virtual environment for
dependencies contain false positives/examples. Skip Python metadata in directories
that are not maintained in this project.

Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
  • Loading branch information
@jpower432
jpower432 authored Dec 13, 2023
1 parent e3b5020 commit 3c68011
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions .github/workflows/publish.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -84,6 +84,7 @@ jobs:
with:
image-ref: ${{ env.IMAGE_REGISTRY }}/${{ vars.QUAY_ORG }}/${{ env.IMAGE_NAME }}:${{ env.TAG }}
exit-code: 1
skip-files: "**/.venv/lib/**/METADATA"
scanners: secret
severity: HIGH,CRITICAL,MEDIUM

Expand Down

0 comments on commit 3c68011

Please sign in to comment.