modified the build.yaml

tracy18 · tracy18 · commit 519a26acad13 · 2025-03-12T17:02:53.000-04:00
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -69,10 +69,12 @@ jobs:
         env:
           REGISTRY_URL: ${{ secrets.AWS_ACCOUNT_ID }}.dkr.ecr.${{ secrets.AWS_REGION }}.amazonaws.com
           IMAGE_NAME: ${{ secrets.AWS_ACCOUNT_ID }}.dkr.ecr.${{ secrets.AWS_REGION }}.amazonaws.com/${{ env.ECR_REPO }}:${{ env.CODE_BRANCH }}.${{ github.run_number }}
-        run: |
-          echo "Testing Image with Trivy: $IMAGE_NAME"
-          docker run --rm --name trivy -u root -v /var/run/docker.sock:/var/run/docker.sock aquasecurity/trivy:latest \
-          image --exit-code 1 --severity HIGH,CRITICAL $IMAGE_NAME
+        uses: aquasecurity/trivy-action@master
+        with:
+          image-ref: '${{ env.IMAGE_NAME }}'
+          format: 'table'
+          exit-code: 1
+          severity: 'CRITICAL,HIGH'
    
       - name: Configure AWS Role to assume using OIDC authentication
         uses: aws-actions/configure-aws-credentials@v4
