Skip to content

Added Trivy Vulnerability scanner for the project #397

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
gkeesh7 wants to merge 4 commits into
base: master
Choose a base branch
from
Open

Added Trivy Vulnerability scanner for the project #397

Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
ca207b3
Added Trivy Vulnerability scanner for the project
gauravkuber Feb 6, 2025
9a9d118
Merged with main
gauravkuber May 20, 2025
0f77cf4
Merge branch 'uber:master' into trivy_vuln_scan
gkeesh7 May 20, 2025
91005dc
Merge branch 'uber:master' into trivy_vuln_scan
gkeesh7 Jul 29, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 32 additions & 0 deletions .github/workflows/trivy-scan.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,32 @@
name: Trivy Scan

on:
push:
branches: [ master ]
pull_request:
branches: [ master ]

jobs:
trivy_scan:
name: Trivy Vulnerability Scan
runs-on: ubuntu-latest

steps:
- name: Checkout Repository
uses: actions/checkout@v3

- name: Set up Trivy
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0
with:
scan-type: 'fs'
scan-all-sub-directories: true
format: 'table'
exit-code: '1'
ignore-unfixed: true
security-checks: 'vuln,config,secret' # Customize based on needs

- name: Upload Trivy Results
uses: actions/upload-artifact@v4
with:
name: trivy-report
path: trivy-report.*
Loading