OpenSource/discord-notifier
OpenSource/discord-notifier
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ci: 💚 use alternate trivy db repos
Some checks failed
ci/woodpecker/push/scans Pipeline was successful
Details
ci/woodpecker/push/build Pipeline failed
Details

Browse Source
This commit is contained in:
Radek Goláň jr. 2024-10-31 09:26:28 +01:00
parent 08947259ae
commit dc978900b8
Signed by: shield
GPG Key ID: D86423BFC31F3591
2 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.woodpecker/build.yml
View File

@ -63,6 +63,9 @@ steps:
from_secret: registry_username from_secret: registry_username
TRIVY_PASSWORD: TRIVY_PASSWORD:
from_secret: registry_password from_secret: registry_password
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
TRIVY_CHECKS_BUNDLE_REPOSITORY: public.ecr.aws/aquasecurity/trivy-checks
commands: commands:
- trivy image dev.shielddagger.com/opensource/discord-notifier:latest --exit-code 1 --username $TRIVY_USER --severity HIGH,CRITICAL - trivy image dev.shielddagger.com/opensource/discord-notifier:latest --exit-code 1 --username $TRIVY_USER --severity HIGH,CRITICAL
when: when:

8
.woodpecker/scans.yml
View File

@ -5,6 +5,10 @@ steps:
- name: scan-repo - name: scan-repo
depends_on: [] depends_on: []
image: aquasec/trivy image: aquasec/trivy
environment:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
TRIVY_CHECKS_BUNDLE_REPOSITORY: public.ecr.aws/aquasecurity/trivy-checks
commands: commands:
- trivy repo . --exit-code 1 - trivy repo . --exit-code 1
when: when:
@ -12,6 +16,10 @@ steps:
- name: scan-conf - name: scan-conf
depends_on: [] depends_on: []
image: aquasec/trivy image: aquasec/trivy
environment:
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
TRIVY_CHECKS_BUNDLE_REPOSITORY: public.ecr.aws/aquasecurity/trivy-checks
commands: commands:
- trivy config . --exit-code 1 - trivy config . --exit-code 1
when: when: