From c19d86faa393bdd696a5708e3c294f956d750683 Mon Sep 17 00:00:00 2001 From: Ivan Gabaldon Date: Sun, 12 Jul 2026 13:09:19 +0200 Subject: [PATCH] [mod] ci: remove security (#6400) Manage alerts directly from Docker Hub --- .github/workflows/security.yml | 46 ---------------------------------- 1 file changed, 46 deletions(-) delete mode 100644 .github/workflows/security.yml diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml deleted file mode 100644 index 8ca397d44..000000000 --- a/.github/workflows/security.yml +++ /dev/null @@ -1,46 +0,0 @@ ---- -name: Security - -# yamllint disable-line rule:truthy -on: - workflow_dispatch: - schedule: - - cron: "42 05 * * *" - -concurrency: - group: ${{ github.workflow }} - cancel-in-progress: false - -permissions: - contents: read - -jobs: - container: - if: github.repository_owner == 'searxng' - name: Container - runs-on: ubuntu-24.04-arm - permissions: - security-events: write - - steps: - - name: Checkout - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - with: - persist-credentials: "false" - - - name: Sync GHCS from Docker Scout - uses: docker/scout-action@2688993af7bafd6ba8c6a74ec652442be91dd82b # v1.23.1 - with: - organization: "searxng" - dockerhub-user: "${{ secrets.DOCKER_USER }}" - dockerhub-password: "${{ secrets.DOCKER_TOKEN }}" - image: "registry://ghcr.io/searxng/searxng:latest" - command: "cves" - sarif-file: "./scout.sarif" - exit-code: "false" - write-comment: "false" - - - name: Upload SARIFs - uses: github/codeql-action/upload-sarif@99df26d4f13ea111d4ec1a7dddef6063f76b97e9 # v4.37.0 - with: - sarif_file: "./scout.sarif"