Merge pull request #4174 from zhzhuang-zju/trivy

ci: image-scanning increases results display
2023-10-25 19:35:29 +08:00 · 2023-10-25 19:35:29 +08:00 · 941e198b2e
parent 4e7084c0f5 c310f89c12
commit 941e198b2e
1 changed files with 8 additions and 1 deletions
--- a/.github/workflows/ci-image-scanning.yaml
+++ b/.github/workflows/ci-image-scanning.yaml
@ -23,7 +23,7 @@ jobs:
          - karmada-metrics-adapter
    steps:
      - name: checkout code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
      - name: Build an image from Dockerfile
        run: |
          export VERSION="latest"
@ -37,6 +37,13 @@ jobs:
          ignore-unfixed: true
          vuln-type: 'os,library'
          output: 'trivy-results.sarif'
+      - name: display scan results
+        uses: aquasecurity/trivy-action@0.12.0
+        with:
+          image-ref: 'docker.io/karmada/${{ matrix.target }}:latest'
+          format: 'table'
+          ignore-unfixed: true
+          vuln-type: 'os,library'
      - name: Upload Trivy scan results to GitHub Security tab
        uses: github/codeql-action/upload-sarif@v2
        with: