Skip to content

Bump aquasecurity/trivy-action from 0.12.0 to 0.13.0 (#77) #263

Bump aquasecurity/trivy-action from 0.12.0 to 0.13.0 (#77)

Bump aquasecurity/trivy-action from 0.12.0 to 0.13.0 (#77) #263

Workflow file for this run

name: Integration
on:
push:
pull_request:
jobs:
check:
name: Check
runs-on: ubuntu-latest
steps:
- name: Setup Go
uses: actions/setup-go@v4
with:
go-version: "^1.17"
- name: Checkout Code
uses: actions/checkout@v4
- name: Lint Go Code
run: |
go install honnef.co/go/tools/cmd/staticcheck@latest
staticcheck ./...
vet:
name: Vet
runs-on: ubuntu-latest
steps:
- name: Setup Go
uses: actions/setup-go@v4
with:
go-version: "^1.17"
- name: Checkout Code
uses: actions/checkout@v4
- name: Vet Go code
run: go vet ./...
build:
name: Build
runs-on: ubuntu-latest
steps:
- name: Set up Go
uses: actions/setup-go@v4
with:
go-version: "^1.17"
- name: Check out code into the Go module directory
uses: actions/checkout@v4
- name: Compile
run: go build -v -o build/docker-machine-driver-nutanix machine/main.go
- name: Run Trivy vulnerability scanner
uses: aquasecurity/[email protected]
with:
scan-type: "fs"
ignore-unfixed: true
format: "table"
exit-code: "1"
vuln-type: "os,library"
severity: "CRITICAL,HIGH"
- name: Upload artifact
uses: actions/[email protected]
with:
# Artifact name
name: docker-machine-driver-nutanix
# Directory containing files to upload
path: build/docker-machine-driver-nutanix