mirror of https://github.com/searxng/searxng.git
Compare commits
No commits in common. "174e5242569812618af4ebd9a646ba2a6ded5459" and "8a56e3d443d12c1b5f467bdffcb746747a7107ef" have entirely different histories.
174e524256
...
8a56e3d443
|
|
@ -1,28 +0,0 @@
|
||||||
name: "Security checks"
|
|
||||||
on:
|
|
||||||
schedule:
|
|
||||||
- cron: "42 05 * * *"
|
|
||||||
workflow_dispatch:
|
|
||||||
|
|
||||||
jobs:
|
|
||||||
dockers:
|
|
||||||
name: Trivy ${{ matrix.image }}
|
|
||||||
runs-on: ubuntu-20.04
|
|
||||||
steps:
|
|
||||||
- name: Checkout
|
|
||||||
uses: actions/checkout@v2
|
|
||||||
|
|
||||||
- name: Run Trivy vulnerability scanner
|
|
||||||
uses: aquasecurity/trivy-action@master
|
|
||||||
with:
|
|
||||||
image-ref: 'searxng/searxng:latest'
|
|
||||||
ignore-unfixed: false
|
|
||||||
vuln-type: 'os,library'
|
|
||||||
severity: 'UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL'
|
|
||||||
format: 'sarif'
|
|
||||||
output: 'trivy-results.sarif'
|
|
||||||
|
|
||||||
- name: Upload Trivy scan results to GitHub Security tab
|
|
||||||
uses: github/codeql-action/upload-sarif@v2
|
|
||||||
with:
|
|
||||||
sarif_file: 'trivy-results.sarif'
|
|
||||||
Loading…
Reference in New Issue