From 30649b5a7674db6e01963a9e9d00605a6485d971 Mon Sep 17 00:00:00 2001
From: Radek Golan <shield@shielddagger.com>
Date: Wed, 24 Apr 2024 14:03:38 +0200
Subject: [PATCH] Limit trivy output

---
 .woodpecker/build.yml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/.woodpecker/build.yml b/.woodpecker/build.yml
index 715087e..fa9c1b9 100644
--- a/.woodpecker/build.yml
+++ b/.woodpecker/build.yml
@@ -15,6 +15,8 @@ steps:
   - echo ${CI_COMMIT_SHA:0:8} > .version
 - name: dryrun
   image: woodpeckerci/plugin-docker-buildx
+  environment:
+    IMAGE_REPO_URL: *repo
   backend_options:
       kubernetes:
         securityContext:
@@ -22,7 +24,7 @@ steps:
   settings:
     dockerfile: *file
     platforms: linux/arm64,linux/amd64
-    cache_from: type=registry,ref=dev.shielddagger.com/infra/discord-notifier
+    cache_from: type=registry,ref=${IMAGE_REPO_URL}
     cache_to: type=inline
     dry_run: true
     repo: *repo
@@ -64,7 +66,7 @@ steps:
     TRIVY_PASSWORD:
       from_secret: registry_password
   commands:
-  - trivy image dev.shielddagger.com/infra/discord-notifier  --exit-code 1 --username $TRIVY_USER
+  - trivy image dev.shielddagger.com/infra/discord-notifier  --exit-code 1 --username $TRIVY_USER --severity HIGH,CRITICAL
   when:
   - event: push
     branch: main
@@ -74,7 +76,7 @@ steps:
   settings:
     webhook_url:
       from_secret: discord_webhook
-    woodpecker_url: https://ci.shielddagger.com
+    woodpecker_url: https://ci.shielddagger.com/api
     woodpecker_token:
       from_secret: woodpecker_token
     icon_url: https://dev.shielddagger.com/repo-avatars/273e88fa2afde290121dc7b5987dc366b88325f147bf1e5766bca26296bbc1f9