Remove docker scouting for now

opensrp · Dec 4, 2024 · 164a527 · 164a527
1 parent e011868
commit 164a527
Showing 1 changed file with 0 additions and 28 deletions.
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -77,31 +77,3 @@ jobs:
 
       - name: Image digest
         run: echo ${{ steps.docker_build.outputs.digest }}
-
-      - name: Scan Docker Image with Docker Scout and Save Report
-        id: scout
-        run: |
-          # Save the Docker Scout report as JSON and Markdown
-          docker scout cves ${{ steps.meta.outputs.tags }} --output json > scout-report.json
-          docker scout cves ${{ steps.meta.outputs.tags }} --output markdown > scout-report.md
-
-      - name: Check Docker Scout Scan Result
-        id: check-scout-result
-        run: |
-          # Check if any vulnerabilities are reported in the JSON output
-          if grep -q '"severity":' scout-report.json; then
-            echo "Vulnerabilities found in Docker Scout report."
-            echo "found_vulnerabilities=true" >> $GITHUB_ENV
-          else
-            echo "No vulnerabilities found."
-            echo "found_vulnerabilities=false" >> $GITHUB_ENV
-
-      - name: Create GitHub Issue for Vulnerabilities
-        if: env.found_vulnerabilities == 'true'
-        uses: peter-evans/create-issue-from-file@v4
-        with:
-          title: "Docker Scout Vulnerability Report for Image ${{ steps.meta.outputs.tags }}"
-          content-filepath: scout-report.md
-          labels: |
-            "Security Support"
-            "Bug Report"