From fd2f3eaa63c418daf90591004e1565444e9eb791 Mon Sep 17 00:00:00 2001
From: Seth Grover <seth.d.grover@gmail.com>
Date: Tue, 22 Oct 2024 13:56:58 -0600
Subject: [PATCH] try to fall back to alternate trivy DB database, see
 aquasecurity/trivy-action#389

---
 .github/workflows/montag-build-push-ghcr.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/montag-build-push-ghcr.yml b/.github/workflows/montag-build-push-ghcr.yml
index 5a5b58a..3fb813a 100644
--- a/.github/workflows/montag-build-push-ghcr.yml
+++ b/.github/workflows/montag-build-push-ghcr.yml
@@ -66,6 +66,8 @@ jobs:
         name: Run Trivy vulnerability scanner
         id: trivy-scan
         uses: aquasecurity/trivy-action@master
+        env:
+          TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db
         with:
           scan-type: 'image'
           image-ref: ${{ env.IMAGE_NAME }}:${{ env.IMAGE_TAG }}