From 250c432dca9d6202d234db9245e62fb9a7245ab6 Mon Sep 17 00:00:00 2001 From: Silvija Tovernic Date: Sat, 21 Sep 2024 19:01:07 +0200 Subject: [PATCH] test --- .../reusable-workflow-docker-image.yml | 28 +++++++++---------- 1 file changed, 14 insertions(+), 14 deletions(-) diff --git a/.github/workflows/reusable-workflow-docker-image.yml b/.github/workflows/reusable-workflow-docker-image.yml index 1d85430..717d465 100644 --- a/.github/workflows/reusable-workflow-docker-image.yml +++ b/.github/workflows/reusable-workflow-docker-image.yml @@ -48,21 +48,21 @@ jobs: - name: Check ubuntu image with Trivy run: | - podman pull docker.io/library/ubuntu:22.04 - trivy image docker.io/library/ubuntu:22.04 + podman pull wp10tfdevacr.azurecr.io/silvija-test:56 + trivy image wp10tfdevacr.azurecr.io/silvija-test:56 - - name: Check image with Trivy - run: | - mkdir build-artifacts - echo "=======> Print image for trivy scan:" - echo "$REGISTRY/$IMAGE_NAME:$IMAGE_TAG" - echo ""=======> Print available images:" - podman image ls - echo ""=======> Scan image with trivy:" - trivy image $REGISTRY/$IMAGE_NAME:$IMAGE_TAG >> build-artifacts/vuln-scan.txt - cat build-artifacts/vuln-scan.txt - trivy image --format spdx ubuntu:rolling >> build-artifacts/sbom-spdx.txt - trivy image --format cyclonedx ubuntu:rolling >> build-artifacts/sbom-cyclonedx.txt + # - name: Check image with Trivy + # run: | + # mkdir build-artifacts + # echo "=======> Print image for trivy scan:" + # echo "$REGISTRY/$IMAGE_NAME:$IMAGE_TAG" + # echo ""=======> Print available images:" + # podman image ls + # echo ""=======> Scan image with trivy:" + # trivy image $REGISTRY/$IMAGE_NAME:$IMAGE_TAG >> build-artifacts/vuln-scan.txt + # cat build-artifacts/vuln-scan.txt + # trivy image --format spdx ubuntu:rolling >> build-artifacts/sbom-spdx.txt + # trivy image --format cyclonedx ubuntu:rolling >> build-artifacts/sbom-cyclonedx.txt # - name: Upload Artifacts # uses: actions/upload-artifact@v4