Skip to content

Trivy Periodic Image Scan #41

Trivy Periodic Image Scan

Trivy Periodic Image Scan #41

---
#
# This workflow scans the published container images
# for new vulnerabilities daily, publishing findings.
# Findings will be associated with the 'main' branch
# of the repo' in the GitHub Security tab.
#
name: Trivy Periodic Image Scan
on:
schedule:
# run daily
- cron: "0 0 * * *"
jobs:
lower-case:
runs-on: ubuntu-latest
steps:
- name: Ensure image name is lower case
id: image_name
uses: vishalmamidi/lowercase-action@v1
with:
string: ghcr.io/${{ github.repository }}:main
outputs:
lowercase: ${{ steps.image_name.outputs.lowercase }}
periodic-scan:
needs: lower-case
uses: "./.github/workflows/trivy.yml"
with:
SOURCE_TYPE: image
IMAGE_NAME: ${{ needs.lower-case.outputs.lowercase }}
...