fix: temporarily disable trivy-scan-image
This commit is contained in:
parent
99542e67aa
commit
ff93932ba2
7
.github/workflows/ci.yaml
vendored
7
.github/workflows/ci.yaml
vendored
@ -434,7 +434,9 @@ jobs:
|
|||||||
trivy-scan-image:
|
trivy-scan-image:
|
||||||
runs-on: ubuntu-20.04
|
runs-on: ubuntu-20.04
|
||||||
needs: docker-amd64
|
needs: docker-amd64
|
||||||
|
# NOTE@jsjoeio: disabling due to a memory issue upstream
|
||||||
|
# See: https://github.com/github/codeql-action/issues/528
|
||||||
|
if: 1 == 2
|
||||||
steps:
|
steps:
|
||||||
- name: Checkout code
|
- name: Checkout code
|
||||||
uses: actions/checkout@v2
|
uses: actions/checkout@v2
|
||||||
@ -457,6 +459,9 @@ jobs:
|
|||||||
output: "trivy-image-results.sarif"
|
output: "trivy-image-results.sarif"
|
||||||
severity: "HIGH,CRITICAL"
|
severity: "HIGH,CRITICAL"
|
||||||
|
|
||||||
|
- name: Debug Trivy SARIF file
|
||||||
|
run: cat trivy-image-results.sarif && ls -l trivy-image-results.sarif
|
||||||
|
|
||||||
- name: Upload Trivy scan results to GitHub Security tab
|
- name: Upload Trivy scan results to GitHub Security tab
|
||||||
uses: github/codeql-action/upload-sarif@v1
|
uses: github/codeql-action/upload-sarif@v1
|
||||||
with:
|
with:
|
||||||
|
Reference in New Issue
Block a user