imagescan_action

2025-12-13 21:58:31 +01:00
parent 2123eb3b7a
commit dd8bdf87a2
1 changed files with 14 additions and 0 deletions
--- a/.gitea/workflows/trivy_scan_image.yml
+++ b/.gitea/workflows/trivy_scan_image.yml
@@ -27,6 +27,20 @@ jobs:
          ignore-unfixed: true
          severity: "UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL"
          scanners: "vuln,misconfig,secrets"
+          output: trivy.txt
        env:
          TRIVY_USERNAME: "${{ env.user }}"
          TRIVY_PASSWORD: "${{ secrets.DOCKER_PULL_TOKEN }}"
+      - name: Publish Trivy Output to Summary
+        run: |
+          if [[ -s trivy.txt ]]; then
+            {
+              echo "### Security Output"
+              echo "<details><summary>Click to expand</summary>"
+              echo ""
+              echo '```terraform'
+              cat trivy.txt
+              echo '```'
+              echo "</details>"
+            } >> $GITHUB_STEP_SUMMARY
+          fi