Fix GitHub Action Trivy Analysis warnings

Update trivy-action to 0.17.0 Close keycloak#27264 Signed-off-by: Yves Galante <yves.galante@jmob.net>
yyvess · May 10, 2024 · 0a66006 · 0a66006
1 parent 1c3890b
commit 0a66006
Showing 1 changed file with 2 additions and 3 deletions.
diff --git a/.github/workflows/trivy-analysis.yml b/.github/workflows/trivy-analysis.yml
@@ -22,15 +22,14 @@ jobs:
         uses: aquasecurity/trivy-action@d710430a6722f083d3b36b8339ff66b32f22ee55
         with:
           image-ref: quay.io/keycloak/${{ matrix.container}}:nightly
-          format: template
-          template: '@/contrib/sarif.tpl'
+          format: sarif
           output: trivy-results.sarif
           severity: MEDIUM,CRITICAL,HIGH
           ignore-unfixed: true
-          security-checks: vuln
           timeout: 15m
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: trivy-results.sarif
+          category: ${{ matrix.container}}