Make docker images scanner weekly and triggered on allowed images update

dnestoro · Oct 27, 2023 · b184cc1 · b184cc1
1 parent e8e9b02
commit b184cc1
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 17 deletions.
diff --git a/.github/workflows/scan-docker-images-skip.yml b/.github/workflows/scan-docker-images-skip.yml
diff --git a/.github/workflows/scan-docker-images.yml b/.github/workflows/scan-docker-images.yml
@@ -1,10 +1,13 @@
 name: "Scan docker images from the allowed docker images list"
 
 on:
+  # we should run this job if somebody wants to add/update allowed docker images
   pull_request:
-    paths-ignore:
-      - '**.md'
-      - 'library-and-framework-list*.json'
+    paths:
+      - 'tests/tck-build-logic/src/main/resources/allowed-docker-images'
+  # we should run this job once a week to check if new vulnerabilities are found in existing images
+  schedule:
+    - chron: "0 0 * * 6"
 
 jobs:
   scan-images: