armistace/pr_reviewer
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity

attempt trivy fix in workflow using github binary
Some checks failed
Build and Push Image / Build and push image (push) Failing after 36m44s
Details

Browse Source 
it seems the trivy binary is causing a trivy failure :/
This commit is contained in:
armistace 2026-05-20 16:39:04 +10:00
parent 0d872ed029
commit 7211b02c69
1 changed files with 3 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
.gitea/workflows/build_push.yml
View File

@ -46,15 +46,10 @@ jobs:
- name: Trivy Scan - name: Trivy Scan
run: | run: |
echo "Installing Trivy " echo "Installing Trivy (latest from GitHub)"
sudo apt-get update curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
sudo apt-get install -y wget apt-transport-https gnupg lsb-release
wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key | sudo apt-key add -
echo deb https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -sc) main | sudo tee -a /etc/apt/sources.list.d/trivy.list
sudo apt-get update
sudo apt-get install -y trivy
trivy image --format table --exit-code 1 --ignore-unfixed --vuln-type os,library --severity HIGH,CRITICAL git.aridgwayweb.com/armistace/pr-reviewer:latest trivy image --format table --exit-code 1 --ignore-unfixed --vuln-type os,library --severity HIGH,CRITICAL git.aridgwayweb.com/armistace/pr-reviewer:latest
- name: Deploy - name: Deploy
run: | run: |
echo "Installing Kubectl" echo "Installing Kubectl"