Skip to content

dependabot(docker): bump caddy from 2.7.4-alpine to 2.7.5-alpine #138

dependabot(docker): bump caddy from 2.7.4-alpine to 2.7.5-alpine

dependabot(docker): bump caddy from 2.7.4-alpine to 2.7.5-alpine #138

Workflow file for this run

name: Trivy
# This workflow uses actions that are not certified by GitHub.
# They are provided by a third-party and are governed by
# separate terms of service, privacy policy, and support
# documentation.
on:
pull_request:
workflow_dispatch:
jobs:
scan:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
with:
scan-type: 'fs'
format: 'table'
ignore-unfixed: 'false'
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'