Skip to content

Commit

Permalink
Update trivy.yml
Browse files Browse the repository at this point in the history
Trivy rate limit workaround + update checkout and codeql task versions
  • Loading branch information
dotasek authored Oct 8, 2024
1 parent bb84ecd commit 2c43390
Showing 1 changed file with 6 additions and 2 deletions.
8 changes: 6 additions & 2 deletions .github/workflows/trivy.yml
Original file line number Diff line number Diff line change
Expand Up @@ -14,10 +14,14 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3
uses: actions/checkout@v4

- name: Run static analysis
uses: aquasecurity/trivy-action@master
env:
# Workaround for rate limiting on ghcr. Use these two entries for ghcr related TOOMANYREQUESTS errors.
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
with:
scan-type: 'fs'
vuln-type: 'library'
Expand All @@ -29,7 +33,7 @@ jobs:


- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v2
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: 'trivy-results.sarif'
category: 'code'

0 comments on commit 2c43390

Please sign in to comment.