DevFW-CICD/vulnerability-scan
16
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
vulnerability-scan/README.md

22 lines
658 B
Markdown
Raw Permalink Normal View History

added trivy scanning
2024-11-28 13:20:21 +00:00
# Run Trivy Image Scanner GitHub Action
This GitHub Action scans Docker images for vulnerabilities, secrets, licenses, and misconfigurations using [Trivy](https://github.com/aquasecurity/trivy).
## Inputs
| Input Name | Description | Required | Type |
|------------|-----------------------|----------|--------|
| `image` | The Docker image to scan. | Yes | string |
## Usage
This action can be used in other workflows with `workflow_call`. Heres an example:
```yaml
jobs:
scan:
uses:DevFW-CICD/vulnerability-scan/.github/workflows/trivy-image-scan.yml@main
with:
image: 'my-registry.com/project/image:latest'
```
Reference in a new issue Copy permalink