Patrick.Sy/spring-petclinic
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-petclinic.git synced 2025-07-24 00:35:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

replace Trivy with JFrog SCA

Browse source
This commit is contained in:
Dan Alima 2023-12-30 23:54:28 +02:00
parent a40c036578
commit e30adc1e95
1 changed files with 7 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

19
.github/workflows/maven-build.yml vendored
View file

@ -60,15 +60,10 @@ jobs:
jf rt build-publish jf rt build-publish
- name: Scan the project with your preferred SCA tool - name: Scan the project with your preferred SCA tool
uses: aquasecurity/trivy-action@master uses: jfrog/setup-jfrog-cli@v3
with: env:
image-ref: 'danvid.jfrog.io/assignment-docker/spring-petclinic:${{ github.sha }}' JF_URL: ${{ secrets.JF_URL }}
format: 'sarif' JF_ACCESS_TOKEN: ${{ secrets.JF_ACCESS_TOKEN }}
output: 'trivy-results.sarif' - run: |
ignore-unfixed: true jf scan danvid.jfrog.io/assignment-docker/spring-petclinic:${{ github.sha }}
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: 'trivy-results.sarif'