daenamnu/discordeno
1
0
Fork 0
mirror of https://github.com/discordeno/discordeno.git synced 2026-06-01 00:10:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

test(rest-proxy): add image scan on push to main (#3046)

Browse Source
This commit is contained in:
Jonathan Ho
2023-06-05 18:46:39 -07:00
committed by GitHub
parent 6ea65c70e3
commit abfa0bb8fb
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
.github/workflows/rest-proxy.yml vendored
View File

@@ -80,7 +80,7 @@ jobs:
severity: 'UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL'
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
if: ${{ github.event_name == 'schedule' }}
if: ${{ github.event_name == 'schedule' || github.event_name == 'push' }}
with:
image-ref: 'discordeno/rest-proxy:latest'
exit-code: '0'
@@ -90,12 +90,12 @@ jobs:
output: 'trivy-results.sarif'
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v2
if: ${{ github.event_name == 'schedule' }}
if: ${{ github.event_name == 'schedule' || github.event_name == 'push' }}
with:
sarif_file: 'trivy-results.sarif'
- name: Run Snyk to check Docker image for vulnerabilities
if: ${{ github.event_name == 'schedule' }}
if: ${{ github.event_name == 'schedule' || github.event_name == 'push' }}
continue-on-error: true
uses: snyk/actions/docker@master
env:
@@ -104,7 +104,7 @@ jobs:
image: 'discordeno/rest-proxy:latest'
args: --file=proxies/rest/Dockerfile
- name: Upload result to GitHub Code Scanning
if: ${{ github.event_name == 'schedule' }}
if: ${{ github.event_name == 'schedule' || github.event_name == 'push' }}
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: snyk.sarif