ci: update license scanning (#751)

* Update license_scan.yml * Update license_scan.yml * Update license_scan.yml
sovity · Jan 26, 2024 · b596261 · b596261
1 parent e5fee02
commit b596261
Showing 1 changed file with 22 additions and 4 deletions.
diff --git a/.github/workflows/license_scan.yml b/.github/workflows/license_scan.yml
@@ -1,12 +1,11 @@
 name: Trivy License Scan
 
 on:
-  pull_request:
-    branches: ["main"]
+  push:
 
 jobs:
-  license_scan:
-    name: license_scan
+  license_scan1:
+    name: License scan (rootfs)
     runs-on: ubuntu-latest
     timeout-minutes: 30
     steps:
@@ -21,3 +20,22 @@ jobs:
           scanners: "license"
           severity: "CRITICAL,HIGH"
           exit-code: 1
+  license_scan2:
+    name: License scan (repo)
+    runs-on: ubuntu-latest
+    timeout-minutes: 30
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+      - name: npm install (typescript-client)
+        run: cd extensions/wrapper/clients/typescript-client && npm install
+      - name: npm install (typescript-client-example)
+        run: cd extensions/wrapper/clients/typescript-client-example && npm install
+      - name: Run license scanner
+        uses: aquasecurity/trivy-action@master
+        with:
+          scan-type: "repo"
+          scan-ref: "."
+          scanners: "license"
+          severity: "CRITICAL,HIGH"
+          exit-code: 1