Skip to content
Snippets Groups Projects
Unverified Commit c9da08e6 authored by Mark Sagi-Kazar's avatar Mark Sagi-Kazar
Browse files

ci: fix artifact build by disabling trivy cache update skip 


Signed-off-by: default avatarMark Sagi-Kazar <mark.sagikazar@gmail.com>
parent 3f7135b9
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
.github/workflows/artifacts.yaml
+ 7
8
View file @ c9da08e6
...@@ -44,7 +44,6 @@ jobs: ...@@ -44,7 +44,6 @@ jobs:
id-token: write id-token: write
security-events: write security-events: write
outputs: outputs:
name: ${{ steps.image-name.outputs.value }} name: ${{ steps.image-name.outputs.value }}
digest: ${{ steps.build.outputs.digest }} digest: ${{ steps.build.outputs.digest }}
...@@ -203,8 +202,7 @@ jobs: ...@@ -203,8 +202,7 @@ jobs:
with: with:
path: cache/db path: cache/db
key: trivy-cache-${{ steps.date.outputs.date }} key: trivy-cache-${{ steps.date.outputs.date }}
restore-keys: restore-keys: trivy-cache-
trivy-cache-
- name: Run Trivy vulnerability scanner - name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0 uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
...@@ -212,12 +210,13 @@ jobs: ...@@ -212,12 +210,13 @@ jobs:
input: image input: image
format: sarif format: sarif
output: trivy-results.sarif output: trivy-results.sarif
scan-type: 'fs' scan-type: "fs"
scan-ref: '.' scan-ref: "."
cache-dir: "./cache" cache-dir: "./cache"
env: # Disable skipping trivy cache for now
TRIVY_SKIP_DB_UPDATE: true # env:
TRIVY_SKIP_JAVA_DB_UPDATE: true # TRIVY_SKIP_DB_UPDATE: true
# TRIVY_SKIP_JAVA_DB_UPDATE: true
## Trivy-db uses `0600` permissions. ## Trivy-db uses `0600` permissions.
## But `action/cache` use `runner` user by default ## But `action/cache` use `runner` user by default
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment