Skip to content

Commit 78a3dd8

Browse files
authored
Merge pull request #294 from stevendborrelli/disable-trivy
ci: drop Trivy vulnerability scanning
2 parents 1c756d2 + f22fd8a commit 78a3dd8

1 file changed

Lines changed: 0 additions & 20 deletions

File tree

.github/workflows/ci.yml

Lines changed: 0 additions & 20 deletions
Original file line numberDiff line numberDiff line change
@@ -102,26 +102,6 @@ jobs:
102102
- name: Perform CodeQL Analysis
103103
uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4
104104

105-
trivy-scan-fs:
106-
runs-on: ubuntu-24.04
107-
needs: detect-noop
108-
if: needs.detect-noop.outputs.noop != 'true'
109-
steps:
110-
- name: Checkout
111-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
112-
with:
113-
submodules: true
114-
115-
- name: Run Trivy vulnerability scanner in fs mode
116-
uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0
117-
with:
118-
scan-type: 'fs'
119-
ignore-unfixed: true
120-
skip-dirs: design
121-
scan-ref: '.'
122-
exit-code: '1'
123-
severity: 'CRITICAL,HIGH'
124-
125105
unit-tests:
126106
runs-on: ubuntu-24.04
127107
needs: detect-noop

0 commit comments

Comments
 (0)