Fail trivy on critical, high issues

This commit is contained in:
Amin Vakil 2023-11-06 13:34:52 +03:30
parent 98b2d6495c
commit ef33268973
No known key found for this signature in database
GPG key ID: 1EFC1864E9D9E56B

View file

@ -64,12 +64,14 @@ jobs:
image-ref: ${{ github.repository }}:${{ github.run_id }}
exit-code: '1'
skip-files: '/etc/ssl/certs/vsftpd.pem'
severity: 'CRITICAL,HIGH'
- name: Run Trivy vulnerability scanner.
uses: aquasecurity/trivy-action@master
with:
image-ref: ${{ github.repository }}:nossl
exit-code: '1'
severity: 'CRITICAL,HIGH'
deploy:
if: startsWith(github.ref, 'refs/tags/v')