akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases Wiki Activity

fix: pin Trivy binary version to v0.69.3 in all CI workflows

Browse Source
This commit is contained in:
GitHub Actions
2026-03-05 13:04:33 +00:00
parent 924b8227b5
commit 8c7a55eaa2
3 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
.github/workflows/docker-build.yml vendored
View File

@@ -537,6 +537,7 @@ jobs:
format: 'table'
severity: 'CRITICAL,HIGH'
exit-code: '0'
version: 'v0.69.3'
continue-on-error: true
- name: Run Trivy vulnerability scanner (SARIF)
@@ -548,6 +549,7 @@ jobs:
format: 'sarif'
output: 'trivy-results.sarif'
severity: 'CRITICAL,HIGH'
version: 'v0.69.3'
continue-on-error: true
- name: Check Trivy SARIF exists
@@ -695,6 +697,7 @@ jobs:
format: 'table'
severity: 'CRITICAL,HIGH'
exit-code: '0'
version: 'v0.69.3'
- name: Run Trivy scan on PR image (SARIF - blocking)
id: trivy-scan
@@ -705,6 +708,7 @@ jobs:
output: 'trivy-pr-results.sarif'
severity: 'CRITICAL,HIGH'
exit-code: '1' # Intended to block, but continued on error for now
version: 'v0.69.3'
continue-on-error: true
- name: Check Trivy PR SARIF exists