Use Trivy more effectively #68
Merged
Commits on Apr 12, 2023
-
The current image scanning workflow leads to Trivy scans being run twice because the test action is run on both PRs and pushes to main. To rectify this, a new security action has been added in this commit that only runs on PRs to scan both the permissions-api Git repository and Docker image. Additionally, repo scanning has been added to the image-build action and a typo in the image tag to be scanned has been fixed. Signed-off-by: John Schaeffer <[email protected]>
-
Set exit code for Trivy jobs since they seem to run now
Signed-off-by: John Schaeffer <[email protected]>
-
Fix Trivy findings in dev container Dockerfile
Signed-off-by: John Schaeffer <[email protected]>
-
Disable config scanner until it gets more better
Signed-off-by: John Schaeffer <[email protected]>
-
Adjust whitespace in dev container Dockerfile
Signed-off-by: John Schaeffer <[email protected]>
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.