Knah-Tsaeb/MyShaarli
Knah-Tsaeb/MyShaarli
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
MyShaarli/.github/workflows
History
nodiscc 3b5923b7e1
tools/CI: scan repository with trivy security scanner (yarn.lock, composer.lock) 
- run scan on each push/pull request update
- can be run locally using make test_trivy_repo
- exit with error code 0/success when vulnerabilities are found,  as not to make the workflow fail, a separate periodic run that exits with code 1 should be added in parallel
- update trivy to v0.43.0
- https://github.com/aquasecurity/trivy/releases/tag/v0.43.0
- also consider TRIVY_EXIT_CODE when running trivy on the latest docker image
- ref. https://github.com/shaarli/Shaarli/issues/1531
2023-06-30 23:56:09 +02:00
..
ci.yml tools/CI: scan repository with trivy security scanner (yarn.lock, composer.lock) 2023-06-30 23:56:09 +02:00
docker-latest.yml tools/CI: scan repository with trivy security scanner (yarn.lock, composer.lock) 2023-06-30 23:56:09 +02:00
docker-tags.yml github actions: build OCI images that contin both amd64 and armv7 2023-03-21 18:10:37 +01:00