Commit Graph

2 Commits (9352c9a7ed57bf1b7942e02a5f2357d8b1760e5e)

Author SHA1 Message Date
dependabot[bot] 915417065b
chore(deps): bump aquasecurity/trivy-action in /.github/workflows
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.33.1 to 0.34.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.33.1...0.34.0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-version: 0.34.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2 days ago
appleboy 53f5c5cedf
ci: add automated Trivy security scanning via GitHub Actions
- Add a GitHub Action workflow to perform Trivy security scans on the repository
- Configure scheduled, push, and pull request triggers for the scan
- Upload vulnerability scan results to the GitHub Security tab in SARIF format
- Include additional scan step with table output and failure on detected vulnerabilities

Signed-off-by: appleboy <appleboy.tw@gmail.com>
3 months ago