paspo
/
docker-glpi
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity

test vulnscan action
continuous-integration/drone/push Build is passing Details

This commit is contained in:
Paolo Asperti 2023-10-30 11:57:51 +01:00
parent c3e2fab933
commit 8473b553f8
Signed by: paspo
GPG Key ID: 06D46905D19D5182
1 changed files with 3 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
.gitea/workflows/vulnscan.yaml
View File

@ -17,10 +17,8 @@ jobs:
uses: aquasecurity/trivy-action@master
with:
image-ref: 'docker.asperti.com/paspo/glpi:latest'
format: 'sarif'
output: 'trivy-results.sarif'
format: 'json'
output: 'trivy-results.json'
- name: check output
env:
AAA: ${{ steps.scan.outputs }}
run: echo ""
run: if [ $(jq '.Results[0].Vulnerabilities|length' trivy-results.json) -ne "0" ] ; then exit 1 ; fi