Skip to content

Commit

Permalink
Merge remote-tracking branch 'origin/main' into 2024-09-26-config-as-…
Browse files Browse the repository at this point in the history
…java-code
  • Loading branch information
richardtreier committed Oct 2, 2024
2 parents 611f711 + fa90bb1 commit f9efc0c
Show file tree
Hide file tree
Showing 4 changed files with 12 additions and 0 deletions.
4 changes: 4 additions & 0 deletions .github/workflows/license_scan.yml
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,8 @@ jobs:

- name: Run license scanner
uses: aquasecurity/trivy-action@0.24.0
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
with:
scan-type: "rootfs"
scan-ref: "."
Expand All @@ -34,6 +36,8 @@ jobs:
run: cd extensions/wrapper/clients/typescript-client-example && npm clean-install
- name: Run license scanner
uses: aquasecurity/trivy-action@0.24.0
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
with:
scan-type: "repo"
scan-ref: "."
Expand Down
2 changes: 2 additions & 0 deletions .github/workflows/secret_scan.yml
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,8 @@ jobs:
uses: actions/checkout@v4
- name: Run vulnerability scanner
uses: aquasecurity/trivy-action@0.24.0
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
with:
scan-type: "fs"
exit-code: "1"
Expand Down
4 changes: 4 additions & 0 deletions .github/workflows/security_scan.yml
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,8 @@ jobs:
uses: actions/checkout@v4
- name: Run static analysis (rootfs)
uses: aquasecurity/trivy-action@0.24.0
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
with:
scan-type: "rootfs"
scanners: "vuln,misconfig"
Expand All @@ -29,6 +31,8 @@ jobs:
uses: actions/checkout@v4
- name: Run static analysis (repo)
uses: aquasecurity/trivy-action@0.24.0
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
with:
scan-type: "repo"
scanners: "vuln,misconfig"
Expand Down
2 changes: 2 additions & 0 deletions .github/workflows/trivy.yml
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,8 @@ jobs:

- name: Run static analysis
uses: aquasecurity/trivy-action@0.24.0
env:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
with:
scan-type: 'fs'
security-checks: 'vuln,secret,config'
Expand Down

0 comments on commit f9efc0c

Please sign in to comment.