From ef33268973eb15bf1888208b2dd0172bf94c661a Mon Sep 17 00:00:00 2001
From: Amin Vakil <info@aminvakil.com>
Date: Mon, 6 Nov 2023 13:34:52 +0330
Subject: [PATCH] Fail trivy on critical, high issues

---
 .github/workflows/ci.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index bcb3dc4..21b2079 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -64,12 +64,14 @@ jobs:
           image-ref: ${{ github.repository }}:${{ github.run_id }}
           exit-code: '1'
           skip-files: '/etc/ssl/certs/vsftpd.pem'
+          severity: 'CRITICAL,HIGH'
 
       - name: Run Trivy vulnerability scanner.
         uses: aquasecurity/trivy-action@master
         with:
           image-ref: ${{ github.repository }}:nossl
           exit-code: '1'
+          severity: 'CRITICAL,HIGH'
 
   deploy:
     if: startsWith(github.ref, 'refs/tags/v')