xaked/actions
1
0
Fork 0
Code Issues 1 Pull Requests 10 Actions Packages Projects Releases 8 Wiki Activity
Files
renovate/actions-checkout-7.x
actions/.gitea/workflows/sec-checks-trivy.yml
T
bot 8109c677d6
Cog check / Create release (pull_request) Successful in 1m3s
Details
chore(deps): update actions/checkout action to v7
2026-06-19 00:02:02 +00:00

31 lines
799 B
YAML
Raw Permalink Blame History

name: checks-trivy
on:
workflow_call:
jobs:
checks-trivy:
name: checks-trivy
runs-on: ubuntu-latest
steps:
- name: Clone repo
uses: actions/checkout@v7
- name: Run Trivy vulnerability scanner in IaC mode (LOW/MED)
uses: aquasecurity/trivy-action@master
with:
scan-type: "config"
hide-progress: false
format: "table"
exit-code: "0"
ignore-unfixed: true
severity: "LOW,MEDIUM"
- name: Run Trivy vulnerability scanner in IaC mode (HIGH/CRIT)
uses: aquasecurity/trivy-action@master
with:
scan-type: "config"
hide-progress: false
format: "table"
exit-code: "1"
ignore-unfixed: true
severity: "CRITICAL,HIGH"
Reference in New Issue View Git Blame Copy Permalink