Skip to content

scan-container

scan-container #57

Workflow file for this run

name: scan-container
on:
schedule:
- cron: '42 19 * * 0'
jobs:
scan:
runs-on: ubuntu-latest
name: Scan container
steps:
- name: Run Trivy
uses: aquasecurity/trivy-action@0.28.0
with:
image-ref: ghcr.io/${{ github.repository }}:latest
format: sarif
output: trivy-results.sarif
severity: CRITICAL,HIGH
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v3
if: always()
with:
sarif_file: trivy-results.sarif