From 8f396fbd72e963cf539227fb10f22b2c82976aeb Mon Sep 17 00:00:00 2001 From: Seth Grover Date: Tue, 22 Oct 2024 13:52:45 -0600 Subject: [PATCH] try to fall back to alternate trivy DB database, see aquasecurity/trivy-action#389 --- .github/workflows/iso-build-docker-wrap-push-ghcr.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/iso-build-docker-wrap-push-ghcr.yml b/.github/workflows/iso-build-docker-wrap-push-ghcr.yml index 3a5918d..bf9f433 100644 --- a/.github/workflows/iso-build-docker-wrap-push-ghcr.yml +++ b/.github/workflows/iso-build-docker-wrap-push-ghcr.yml @@ -66,6 +66,8 @@ jobs: name: Run Trivy vulnerability scanner id: trivy-scan uses: aquasecurity/trivy-action@master + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: scan-type: 'image' image-ref: ${{ env.IMAGE_NAME }}:${{ env.IMAGE_TAG }}