From fe0fa7dc334ae992d87a2f15791b4df2ed368cc8 Mon Sep 17 00:00:00 2001 From: bhoff Date: Mon, 4 Nov 2024 07:09:17 -0800 Subject: [PATCH] bump Trivy version from 0.24 to 0.28; run hourly until problem is fixed. --- .github/workflows/trivy.yml | 4 ++-- .github/workflows/trivy_periodic_image_scan.yml | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml index a1a7eda..bf6bacc 100644 --- a/.github/workflows/trivy.yml +++ b/.github/workflows/trivy.yml @@ -20,7 +20,7 @@ on: IMAGE_NAME: required: true type: string - EXIT_CODE: # # return code for failed scan. 0 means OK. Non-zero will fail the build when there are findings. + EXIT_CODE: # return code for failed scan. 0 means OK. Non-zero will fail the build when there are findings. required: false type: number default: 0 @@ -55,7 +55,7 @@ jobs: }} | docker import - ${{ inputs.IMAGE_NAME }} - name: Run Trivy vulnerability scanner for any major issues - uses: aquasecurity/trivy-action@0.24.0 + uses: aquasecurity/trivy-action@0.28.0 id: trivy with: image-ref: ${{ inputs.IMAGE_NAME }} diff --git a/.github/workflows/trivy_periodic_image_scan.yml b/.github/workflows/trivy_periodic_image_scan.yml index 9b44b54..cf9a48a 100644 --- a/.github/workflows/trivy_periodic_image_scan.yml +++ b/.github/workflows/trivy_periodic_image_scan.yml @@ -9,8 +9,8 @@ name: Trivy Periodic Image Scan on: schedule: - # run daily - - cron: "0 0 * * *" + # run hourly, 10 minutes after the hour + - cron: "10 * * * *" # daily "0 0 * * *" jobs: lower-case: