Update trivy.yml

boxboat · Oct 12, 2023 · c37dad7 · c37dad7
1 parent e87fa2b
commit c37dad7
Showing 1 changed file with 4 additions and 2 deletions.
diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
@@ -15,10 +15,12 @@ jobs:
       - name: Run Trivy vulnerability scanner in repo mode
         uses: aquasecurity/trivy-action@master
         with:
-          scan-type: 'fs'
+          scan-type: 'config'
+          hide-progress: false
+          output: 'trivy-results.sarif'
+          exit-code: '1'
           ignore-unfixed: true
           format: 'sarif'
-          output: 'trivy-results.sarif'
           severity: 'UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL'
 
       - name: Upload Trivy scan results to GitHub Security tab