Skip to content

Commit

Permalink
fail critical
Browse files Browse the repository at this point in the history
  • Loading branch information
susanshi committed May 31, 2024
1 parent 64c2315 commit 314d46e
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions .github/workflows/scan-vulns.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -66,8 +66,8 @@ jobs:
for img in "localbuild:test" "localbuildcrd:test"; do
trivy image --ignore-unfixed --vuln-type="os,library" "${img}"
done
- name: Run trivy on images and exit on medium severity
- name: Run trivy on images and exit on CRITICAL severity
run: |
for img in "localbuild:test" "localbuildcrd:test"; do
trivy image --ignore-unfixed --exit-code 1 --severity MEDIUM --vuln-type="os,library" "${img}"
trivy image --ignore-unfixed --exit-code 1 --severity CRITICAL --vuln-type="os,library" "${img}"
done

0 comments on commit 314d46e

Please sign in to comment.