Update trivy.yml

2024-11-22 14:10:56 -05:00 · 2021-04-05 17:00:29 -07:00 · 2021-04-05 17:00:29 -07:00 · 768ab9ac38
commit 768ab9ac38
parent 62d953d824
1 changed files with 44 additions and 43 deletions
--- a/.github/workflows/trivy.yml
+++ b/.github/workflows/trivy.yml
@ -1,46 +1,47 @@
---
+# Disabling trivy scans while they get troubleshooting for failures
-name: Container Security Scan with Trivy
+# ---
-on:
+# name: Container Security Scan with Trivy
-  push:
+# on:
-    branches:
+#   push:
-      - master
+#     branches:
-  pull_request:
+#       - master
-jobs:
+#   pull_request:
-  scan-container:
+# jobs:
-    name: Build
+#   scan-container:
-    runs-on: ubuntu-18.04
+#     name: Build
-    steps:
+#     runs-on: ubuntu-18.04
-      ######################
+#     steps:
-      # Checkout code base #
+#       ######################
-      ######################
+#       # Checkout code base #
-      - name: Checkout code
+#       ######################
-        uses: actions/checkout@v2
+#       - name: Checkout code
 #         uses: actions/checkout@v2
-      # ##########################
+#       # ##########################
-      # # Build the docker image #
+#       # # Build the docker image #
-      # ##########################
+#       # ##########################
-      # - name: Build an image from Dockerfile
+#       # - name: Build an image from Dockerfile
-      #   run: |
+#       #   run: |
-      #     docker build -t docker.io/github/super-linter:${{ github.sha }} .
+#       #     docker build -t docker.io/github/super-linter:${{ github.sha }} .
-      #################################
+#       #################################
-      # Run Trivy Scan of source code #
+#       # Run Trivy Scan of source code #
-      #################################
+#       #################################
-      - name: Trivy Scan
+#       - name: Trivy Scan
-        uses: aquasecurity/trivy-action@master
+#         uses: aquasecurity/trivy-action@master
-        with:
+#         with:
-          scan-type: 'fs'
+#           scan-type: 'fs'
-          format: 'template'
+#           format: 'template'
-          exit-code: '1'
+#           exit-code: '1'
-          template: '@/contrib/sarif.tpl'
+#           template: '@/contrib/sarif.tpl'
-          output: 'report.sarif'
+#           output: 'report.sarif'
-          severity: 'HIGH,CRITICAL'
+#           severity: 'HIGH,CRITICAL'
-      #################################
+#       #################################
-      # Upload report to security tab #
+#       # Upload report to security tab #
-      #################################
+#       #################################
-      - name: Upload Trivy scan results to GitHub Security tab
+#       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v1
+#         uses: github/codeql-action/upload-sarif@v1
-        if: always()
+#         if: always()
-        with:
+#         with:
-          sarif_file: 'report.sarif'
+#           sarif_file: 'report.sarif'