File tree Expand file tree Collapse file tree 1 file changed +11
-5
lines changed Expand file tree Collapse file tree 1 file changed +11
-5
lines changed Original file line number Diff line number Diff line change 1818 - name : Build the Docker image
1919 run : docker build . --file ./3.12/Dockerfile --tag serverless-python:${{ steps.vars.outputs.docker_tag }}
2020
21- - name : Scan with Phonito Security
22- uses : phonito/phonito-scanner -action@master
21+ - name : Run Trivy vulnerability scanner
22+ uses : aquasecurity/trivy -action@master
2323 with :
24- image : serverless-python:${{ steps.vars.outputs.docker_tag }}
25- phonito-token : ${{ secrets.PHONITO_TOKEN }}
26- fail-level : HIGH
24+ image-ref : serverless-python:${{ steps.vars.outputs.docker_tag }}
25+ format : ' sarif'
26+ output : ' trivy-results.sarif'
27+
28+ - name : Upload Trivy scan results to GitHub Security tab
29+ uses : github/codeql-action/upload-sarif@v2
30+ if : always()
31+ with :
32+ sarif_file : ' trivy-results.sarif'
You can’t perform that action at this time.
0 commit comments