cn
/
dyndnsd
mirror of https://github.com/cmur2/dyndnsd.git
1
0
Fork 0
Code Releases Activity

ci: ignore false-positive 3rd party lockfiles for trivy 

- uses newly released `--skip-dirs` flag of Trivy 0.11.0
This commit is contained in:
Christian Nicolai 2020-08-30 11:34:26 +02:00 committed by GitHub
parent 0de5078d9d
commit 5b332d8f57
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/vulnscan.yml vendored
View File

@ -34,7 +34,7 @@ jobs:
for image in $ALL_IMAGES; do
if [[ "$image" = cmur2/dyndnsd:v$major_version.* ]]; then
echo -e "\nScanning newest patch release $image of major v$major_version...\n"
if ! trivy image --skip-update --exit-code 1 "$image"; then
if ! trivy image --skip-update --exit-code 1 --skip-dirs '/usr/lib/ruby/gems/2.7.0/gems/jaeger-client-0.10.0/crossdock' "$image"; then
EXIT_CODE=1
fi
break