mirror of https://github.com/aquasecurity/trivy-action.git synced 2026-05-14 03:02:40 +00:00

T

Zois Pagoulatos f498173417 feat: Add support for --ignore-unfixed flag (#10 )

Resolves: #9

2020-06-22 19:40:11 +02:00

docs/images

docs: Update README.md

2020-06-03 09:33:30 +02:00

.gitignore

feat: Add exit-code to Trivy args (#1 )

2020-06-02 18:09:34 +02:00

action.yaml

feat: Add support for --ignore-unfixed flag (#10 )

2020-06-22 19:40:11 +02:00

LICENSE

docs: Add badges (#6 )

2020-06-03 00:09:08 +02:00

README.md

feat: Add support for --ignore-unfixed flag (#10 )

2020-06-22 19:40:11 +02:00

README.md

Trivy Action

GitHub Action for Trivy

Usage
- Workflow
Customizing
- Inputs

Usage

Workflow

name: build
on:
  push:
    branches:
      - master
  pull_request:
jobs:
  build:
    name: Build
    runs-on: ubuntu-18.04
    steps:
      - name: Setup Go
        uses: actions/setup-go@v1
        with:
          go-version: 1.14
      - name: Checkout code
        uses: actions/checkout@v2
      - name: Build an image from Dockerfile
        run: |
          docker build -t docker.io/my-organization/my-app:${{ github.sha }} .
      - name: Run vulnerability scanner
        uses: aquasecurity/trivy-action@0.0.7
        with:
          image-ref: 'docker.io/my-organization/my-app:${{ github.sha }}'
          format: 'table'
          exit-code: '1'
          ignore-unfixed: true
          severity: 'CRITICAL,HIGH'

Customizing

inputs

Following inputs can be used as step.with keys:

Name	Type	Default	Description
`image-ref`	String		Image reference, e.g. `alpine:3.10.2`
`format`	String	`table`	Output format (`table`, `json`)
`exit-code`	String	`0`	Exit code when vulnerabilities were found
`ignore-unfixed`	Boolean	false	Ignore unpatched/unfixed vulnerabilities
`severity`	String	`UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL`	Severities of vulnerabilities to be displayed

README.md

Trivy Action

Table of Contents

Usage

Workflow

Customizing

inputs