Skip to content

Commit

Permalink
fix: Use the the GH TOKEN to pull trivy's DB
Browse files Browse the repository at this point in the history
Signed-off-by: Jorge Turrado <[email protected]>
  • Loading branch information
JorTurFer committed Oct 15, 2024
1 parent 25deb21 commit 7659a4a
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions .github/workflows/template-trivy-scan.yml
Original file line number Diff line number Diff line change
Expand Up @@ -49,6 +49,8 @@ jobs:
exit-code: ${{ inputs.exit-code }}
severity: ${{ inputs.severity }}
trivy-config: trivy.yml
env:
ACTIONS_RUNTIME_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Temporal fix -> https://github.com/aquasecurity/trivy-action/issues/389#issuecomment-2370823704

- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v3
Expand Down

0 comments on commit 7659a4a

Please sign in to comment.