|
dbc61d72fb
|
ci: use actionlint on GHA workflows
- https://github.com/rhysd/actionlint is cool
|
2022-02-16 00:05:40 +01:00 |
|
|
2838ad9eae
|
ci: use JSON schema for GHA workflows
|
2022-02-11 01:29:46 +01:00 |
|
Christian Nicolai
|
84e513b4a2
|
ci: trivy 0.23.0 deprecated the light DB
|
2022-02-03 09:03:08 +01:00 |
|
|
d1c1a98e47
|
ci: use Github environment files
- fixing vulnerability via https://docs.github.com/en/free-pro-team@latest/actions/reference/workflow-commands-for-github-actions#environment-files
|
2020-10-08 12:32:44 +02:00 |
|
|
d62bf71820
|
ci: ignore false-positive 3rd party lockfiles for trivy
|
2020-10-08 12:29:35 +02:00 |
|
|
6ed0799f49
|
ci: improve ignore of false-positives on 3rd party lockfiles
- amends 5b332d8f57
|
2020-08-30 11:41:23 +02:00 |
|
|
5b332d8f57
|
ci: ignore false-positive 3rd party lockfiles for trivy
- uses newly released `--skip-dirs` flag of Trivy 0.11.0
|
2020-08-30 11:34:26 +02:00 |
|
|
fcc3f12284
|
ci: fix vulnscan behavior to scan most-recent semver
|
2020-08-19 14:33:26 +02:00 |
|
|
35ced6468e
|
ci: allow manual run of vulnscan action workflow
|
2020-08-18 22:53:33 +02:00 |
|
|
617fbf538b
|
docker: add image release on tag and periodic vulnerability scan
|
2020-08-18 22:22:41 +02:00 |
|