Skip to content

Commit

Permalink
update anchore
Browse files Browse the repository at this point in the history
  • Loading branch information
@tamalerhino
tamalerhino authored Oct 19, 2024
1 parent 956ccac commit 173fab4
Showing 1 changed file with 5 additions and 13 deletions.
18 changes: 5 additions & 13 deletions .github/workflows/ci.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,28 +16,20 @@ jobs:
runs-on: ubuntu-latest
permissions:
security-events: write

strategy:
fail-fast: false
matrix:
include:
- language: javascript-typescript
build-mode: none

steps:
- name: Checkout Code
uses: actions/checkout@v4
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
build-mode: ${{ matrix.build-mode }}
languages: javascript-typescript
- name: Autobuild
uses: github/codeql-action/autobuild@v3
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{matrix.language}}"
category: "/language:javascript-typescript"

build-push:
name: Build and Push Container Image
Expand All @@ -55,7 +47,6 @@ jobs:
with:
username: ${{ secrets.DOCKER_USERNAME }}
password: ${{ secrets.DOCKER_PASSWORD }}

- name: Build and Publish Container Image
uses: docker/build-push-action@v3
with:
Expand All @@ -74,7 +65,7 @@ jobs:

steps:
- name: Install Trivy
uses: aquasecurity/trivy-action@0.20.0
uses: aquasecurity/trivy-action@0.28.0
with:
image-ref: '${{ secrets.DOCKER_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}'
format: 'table'
Expand Down Expand Up @@ -125,6 +116,7 @@ jobs:
- uses: anchore/sbom-action@v0
with:
image: ${{ secrets.DOCKER_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}
format: cyclonedx
upload-artifact-retention: 30
env:
COSIGN_KEY: ${{secrets.COSIGN_PUBLIC_KEY}}

0 comments on commit 173fab4

Please sign in to comment.