ci: 💚 use alternate trivy db repos
This commit is contained in:
@@ -63,6 +63,9 @@ steps:
|
|||||||
from_secret: registry_username
|
from_secret: registry_username
|
||||||
TRIVY_PASSWORD:
|
TRIVY_PASSWORD:
|
||||||
from_secret: registry_password
|
from_secret: registry_password
|
||||||
|
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
|
||||||
|
TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
|
||||||
|
TRIVY_CHECKS_BUNDLE_REPOSITORY: public.ecr.aws/aquasecurity/trivy-checks
|
||||||
commands:
|
commands:
|
||||||
- trivy image dev.shielddagger.com/opensource/discord-notifier:latest --exit-code 1 --username $TRIVY_USER --severity HIGH,CRITICAL
|
- trivy image dev.shielddagger.com/opensource/discord-notifier:latest --exit-code 1 --username $TRIVY_USER --severity HIGH,CRITICAL
|
||||||
when:
|
when:
|
||||||
|
|||||||
@@ -5,6 +5,10 @@ steps:
|
|||||||
- name: scan-repo
|
- name: scan-repo
|
||||||
depends_on: []
|
depends_on: []
|
||||||
image: aquasec/trivy
|
image: aquasec/trivy
|
||||||
|
environment:
|
||||||
|
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
|
||||||
|
TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
|
||||||
|
TRIVY_CHECKS_BUNDLE_REPOSITORY: public.ecr.aws/aquasecurity/trivy-checks
|
||||||
commands:
|
commands:
|
||||||
- trivy repo . --exit-code 1
|
- trivy repo . --exit-code 1
|
||||||
when:
|
when:
|
||||||
@@ -12,6 +16,10 @@ steps:
|
|||||||
- name: scan-conf
|
- name: scan-conf
|
||||||
depends_on: []
|
depends_on: []
|
||||||
image: aquasec/trivy
|
image: aquasec/trivy
|
||||||
|
environment:
|
||||||
|
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
|
||||||
|
TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
|
||||||
|
TRIVY_CHECKS_BUNDLE_REPOSITORY: public.ecr.aws/aquasecurity/trivy-checks
|
||||||
commands:
|
commands:
|
||||||
- trivy config . --exit-code 1
|
- trivy config . --exit-code 1
|
||||||
when:
|
when:
|
||||||
|
|||||||
Reference in New Issue
Block a user