try grype scan instead of trivy

tetrateio · Oct 1, 2024 · 0a7be0f · 0a7be0f
1 parent c07829e
commit 0a7be0f
Showing 1 changed file with 3 additions and 6 deletions.
diff --git a/.github/workflows/scan.yaml b/.github/workflows/scan.yaml
@@ -31,10 +31,7 @@ jobs:
         with:
           go-version-file: go.mod
       - run: make docker-build
-      - uses: aquasecurity/trivy-action@master
+      - uses: anchore/scan-action@v3
         with:
-          image-ref: local/kubegres:scan-amd64
-          format: table
-          exit-code: 1
-          ignore-unfixed: true
-          severity: 'CRITICAL,HIGH,MEDIUM'
+          image: local/kubegres:scan-amd64
+          output-format: table