Skip to content

Commit

Permalink
SYS-622 alpine:20 wip
Browse files Browse the repository at this point in the history
  • Loading branch information
@instantlinux
instantlinux committed Jul 2, 2024
1 parent 9fbe808 commit 50ded6f
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions .image-gitlab-ci.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,7 @@ variables:
IMAGE: {{ IMAGE }}
PLATFORMS: linux/amd64,linux/arm64,linux/arm/v6,linux/arm/v7
REGISTRY: $REGISTRY_URI/$CI_PROJECT_PATH
TRIVY_VERSION: 0.53.0

stages:
- Static Code Analysis
Expand Down Expand Up @@ -38,7 +39,7 @@ test:
security_scan_trivy:
services: [ "docker:dind" ]
image:
name: aquasec/trivy:latest
name: aquasec/trivy:$TRIVY_VERSION
entrypoint: [""]
stage: Security Scan
variables:
Expand All @@ -52,7 +53,7 @@ security_scan_trivy:
TRIVY_VULN_TYPE: os,library
script:
- export TAG=bld_$CI_PIPELINE_IID_${CI_COMMIT_SHORT_SHA}
- trivy image --clear-cache
- trivy clean --all
- trivy image --download-db-only --no-progress
- trivy image "${REGISTRY}/${IMAGE}:${TAG}" --severity LOW,MEDIUM
--exit-code 0 --format table --output medium-vulns.txt
Expand Down

0 comments on commit 50ded6f

Please sign in to comment.