fixup! 👷 ci(trivy): fix trivy results

jfbus · jfbus · commit 5bd8cfeef528 · 2026-03-23T08:59:25.000Z
diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
@@ -24,12 +24,25 @@ jobs:
     - name: ⬇️ Checkout repository
       uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
     - name: Image
-      run: bash -c "make build-image"
+      id: image
+      run: |
+        make build-image
+      env:
+        VERSION: ${{ github.sha }}
     - name: 🔎 Trivy-Scan
       id: trivyscan
       run: make trivy-scan
+      uses: aquasecurity/trivy-action@0.33.1
+      with:
+        image-ref: outscale/cloud-provider-osc:${{ github.sha }}
+        format: 'sarif'
+        output: 'trivy-results.sarif'
+        severity: 'CRITICAL,HIGH'
+        trivyignores: '.trivyignore'
+        version: 'v0.69.3'
+        vuln-type: 'image'
     - name: ⬆️ Upload Trivy results
       if: ${{ always() && github.event_name != 'pull_request' }}
       uses: github/codeql-action/upload-sarif@v4
       with:
-        sarif_file: './.trivyscan/report.sarif'
+        sarif_file: 'trivy-results.sarif'
diff --git a/.trivyignore b/.trivyignore
@@ -1,10 +0,0 @@
-# github.com/emicklei/go-restful 
-CVE-2022-1996
-# https://github.com/advisories/GHSA-69cg-p879-7622
-CVE-2022-27664
-# https://avd.aquasec.com/nvd/cve-2022-32149
-CVE-2022-32149 
-# https://avd.aquasec.com/nvd/2023/cve-2023-45142
-CVE-2023-45142
-# https://avd.aquasec.com/nvd/2023/cve-2023-47108
-CVE-2023-47108
