mirror of
https://github.com/cmur2/dyndnsd.git
synced 2024-12-22 10:54:23 +01:00
ci: ignore false-positive 3rd party lockfiles for trivy
- uses newly released `--skip-dirs` flag of Trivy 0.11.0
This commit is contained in:
parent
0de5078d9d
commit
5b332d8f57
2
.github/workflows/vulnscan.yml
vendored
2
.github/workflows/vulnscan.yml
vendored
@ -34,7 +34,7 @@ jobs:
|
||||
for image in $ALL_IMAGES; do
|
||||
if [[ "$image" = cmur2/dyndnsd:v$major_version.* ]]; then
|
||||
echo -e "\nScanning newest patch release $image of major v$major_version...\n"
|
||||
if ! trivy image --skip-update --exit-code 1 "$image"; then
|
||||
if ! trivy image --skip-update --exit-code 1 --skip-dirs '/usr/lib/ruby/gems/2.7.0/gems/jaeger-client-0.10.0/crossdock' "$image"; then
|
||||
EXIT_CODE=1
|
||||
fi
|
||||
break
|
||||
|
Loading…
Reference in New Issue
Block a user