paspo
/
docker-dnscache
1
0
Fork 0
Code Issues Pull Requests Actions Packages Releases Activity

telegram vuln notification
Vulnerability Scan / Daily Vulnerability Scan (push) Successful in 21s Details
continuous-integration/drone/push Build is failing Details
continuous-integration/drone/tag Build is passing Details

This commit is contained in:
Paolo Asperti 2024-04-29 23:22:03 +02:00
parent 06e7b6ec0e
commit 4a51b299d6
Signed by: paspo
GPG Key ID: 06D46905D19D5182
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
.gitea/workflows/vulnscan.yaml
View File

@ -3,6 +3,7 @@ name: Vulnerability Scan
on:
schedule:
- cron: "0 14 * * *"
- cron: "32 21 * * *"
workflow_dispatch:
jobs:
@ -27,3 +28,14 @@ jobs:
# if some vulnerability is found, we fail
- name: check output
run: if [ $(jq '.Results[0].Vulnerabilities|length' trivy-results.json) -ne "0" ] ; then exit 1 ; fi
- name: send telegram notification
if: failure()
uses: appleboy/telegram-action@master
with:
to: ${{ secrets.TELEGRAM_TO }}
token: ${{ secrets.TELEGRAM_TOKEN }}
message: Found {{ $(jq '.Results[0].Vulnerabilities|length' trivy-results.json) }} vulnerabilities in {{ github.repository }}
# if: steps.build.outcome == 'success'