Richard/richardnixon.dev-hugo
1
0
Fork 0
Code Issues 1 Pull requests 1 Projects Releases Packages Wiki Activity Actions

ci(trivy): pin Trivy 0.70.0 + curl -f
All checks were successful
deploy / build-and-deploy (push) Successful in 23s
Details
trivy / config-and-image-scan (push) Successful in 3m25s
Details

Browse source
This commit is contained in:
authentik Default Admin 2026-05-27 18:01:18 +02:00
parent 38ddaf4837
commit efce68ae95
1 changed files with 4 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

7
.forgejo/workflows/trivy.yml
View file

@ -11,7 +11,7 @@ on:
- ".gitmodules"
env:
TRIVY_VERSION: "0.59.1"
TRIVY_VERSION: "0.70.0"
jobs:
config-and-image-scan:
@ -24,8 +24,9 @@ jobs:
- name: install trivy
run: |
curl -sSL "https://github.com/aquasecurity/trivy/releases/download/v${TRIVY_VERSION}/trivy_${TRIVY_VERSION}_Linux-64bit.tar.gz" \
| tar -xz -C /usr/local/bin trivy
curl -fsSL "https://github.com/aquasecurity/trivy/releases/download/v${TRIVY_VERSION}/trivy_${TRIVY_VERSION}_Linux-64bit.tar.gz" \
-o /tmp/trivy.tgz
tar -xzf /tmp/trivy.tgz -C /usr/local/bin trivy
trivy --version
- name: scan workflow files for misconfig