Skip to content

Commit

Permalink
attempt to fix Trivy vulnerability scan in CI action
Browse files Browse the repository at this point in the history
  • Loading branch information
comminutus committed Sep 8, 2024
1 parent 2789ea3 commit 12ca682
Showing 1 changed file with 7 additions and 7 deletions.
14 changes: 7 additions & 7 deletions .github/workflows/ci.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -58,14 +58,14 @@ jobs:

# Extract metadata (tags, labels) for vanilla
# https://github.com/docker/metadata-action
- name: Extract container image metadata
- name: Extract vanilla container image metadata
id: meta-vanilla
uses: docker/metadata-action@v5
with:
images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
flavor: |
latest=auto
suffix=vanilla
suffix=-vanilla
tags: |
type=semver,pattern={{version}},prefix=v
type=semver,pattern={{major}}.{{minor}},prefix=v
Expand All @@ -79,14 +79,14 @@ jobs:
# Extract metadata (tags, labels) for msr
# https://github.com/docker/metadata-action
- name: Extract container image metadata
- name: Extract msr container image metadata
id: meta-msr
uses: docker/metadata-action@v5
with:
images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
flavor: |
latest=false
suffix=msr
latest=auto
suffix=-msr
tags: |
type=semver,pattern={{version}},prefix=v
type=semver,pattern={{major}}.{{minor}},prefix=v
Expand Down Expand Up @@ -132,7 +132,7 @@ jobs:
# repository is public to avoid leaking data. If you would like to publish
# transparency data even for private images, pass --force to cosign below.
# https://github.com/sigstore/cosign
- name: Sign the published container image
- name: Sign the vanilla container image
if: ${{ github.event_name != 'pull_request' }}
env:
# https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-an-intermediate-environment-variable
Expand All @@ -147,7 +147,7 @@ jobs:
# repository is public to avoid leaking data. If you would like to publish
# transparency data even for private images, pass --force to cosign below.
# https://github.com/sigstore/cosign
- name: Sign the published container image
- name: Sign the msr container image
if: ${{ github.event_name != 'pull_request' }}
env:
# https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-an-intermediate-environment-variable
Expand Down

0 comments on commit 12ca682

Please sign in to comment.