fibonacci_pipeline/argo-workflows/templates/trivy-image-scan-template.yaml

apiVersion: argoproj.io/v1alpha1
kind: ClusterWorkflowTemplate
metadata:
  name: trivy-image-scan-template
spec:
  entrypoint: trivy-image-scan
  templates:
    - name: trivy-image-scan
      inputs:
        parameters:
          - name: image
      container:
        image: aquasec/trivy:0.56.2
        command: [sh, -c]
        args:
          - |
            set -e

            TRIVY_INSECURE=true trivy image --scanners license,vuln,secret {{inputs.parameters.image}}
            TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig {{inputs.parameters.image}}

            echo trivy-image-scan task completed
adds ci templates 2024-11-08 11:37:54 +00:00			`apiVersion: argoproj.io/v1alpha1`
			`kind: ClusterWorkflowTemplate`
			`metadata:`
			`name: trivy-image-scan-template`
			`spec:`
			`entrypoint: trivy-image-scan`
			`templates:`
			`- name: trivy-image-scan`
			`inputs:`
			`parameters:`
			`- name: image`
			`container:`
			`image: aquasec/trivy:0.56.2`
			`command: [sh, -c]`
			`args:`
			`- \|`
			`set -e`

			`TRIVY_INSECURE=true trivy image --scanners license,vuln,secret {{inputs.parameters.image}}`
			`TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig {{inputs.parameters.image}}`

			`echo trivy-image-scan task completed`