Remove trivy vulnerability scan for now

DataDog · May 8, 2024 · 62cd2c5 · 62cd2c5
1 parent a71a873
commit 62cd2c5
Showing 1 changed file with 1 addition and 32 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -3,7 +3,6 @@ on:
  push:
  branches:
  - main
- workflow_dispatch:
 
 jobs:
  build_push_and_check:
@@ -29,34 +28,4 @@ jobs:
  id: build
  run: ./build.sh
  - name: Push images
- run: ./build.sh --push
- - name: Free Disk Space (Ubuntu) # Required by trivy to have enough space to scan full image
- uses: jlumbroso/free-disk-space@76866dbe54312617f00798d1762df7f43def6e5c # v1.2.0
- with:
- large-packages: false # Temporary fix for https://github.com/jlumbroso/free-disk-space/issues/4
- - name: Run Trivy vulnerability scanner
- uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 # v0.11.2
- with:
- image-ref: '${{ steps.build.outputs.LATEST_IMAGE_TAG }}'
- format: 'sarif'
- output: 'trivy-results.sarif'
- severity: 'CRITICAL,HIGH'
- limit-severities-for-sarif: true
- - name: Upload Trivy scan results to GitHub Security tab
- uses: github/codeql-action/upload-sarif@v2
- with:
- sarif_file: 'trivy-results.sarif'
- keepalive-job:
- name: Keep repository alive to prevent workflows to be disabled
- if: ${{ always() }}
- needs: build_push_and_check
- permissions:
- actions: write
- runs-on: ubuntu-latest
- steps:
- - name: Checkout repository
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # 4.1.1
- - name: Keep workflow alive
- uses: gautamkrishnar/keepalive-workflow@306efe4fc63923e36571682b4f4b3e3eee8b6625 # v1.2.6
- with:
- use_api: true
+ run: ./build.sh --push