tebarius/netdata-DocRudi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: tebarius:0.3.1
Branches Tags
tebarius:main
tebarius:0.3.5 tebarius:0.3.4 tebarius:0.3.3 tebarius:0.3.1
...
compare: tebarius:0.3.3
Branches Tags
tebarius:main
tebarius:0.3.5 tebarius:0.3.4 tebarius:0.3.3 tebarius:0.3.1

2 Commits
0.3.1 ... 0.3.3

Author SHA1 Message Date
tebarius
d68f660595 add apt-get uppgrade to Dockerfile
Some checks failed
trivy-scan-image / trivy_image_scan (push) Failing after 39s
Details
2026-02-15 14:17:02 +01:00
tebarius
ac40105449 add triviy-imagge-scan-job for all platforms 2026-02-15 14:13:37 +01:00
2 changed files with 36 additions and 1 deletions
Expand all files Collapse all files

36
.gitea/workflows/trivy_image_scan.yml
View File

@@ -22,7 +22,7 @@ jobs:
runs-on: ubuntu-latest
container: aquasec/trivy:latest
steps:
- name: Scan image with trivy
- name: Scan linux/amd64-image
run: |
trivy image \
--username ${{ env.user }} \
@@ -31,4 +31,38 @@ jobs:
--scanners vuln,misconfig,secret \
--severity HIGH,CRITICAL \
--ignore-unfixed \
--platform linux/amd64 \
${{ env.registry_gitea }}/${{ env.user }}/${{ env.image_name }}:${{ env.image_tag }}
- name: Scan linux/386-image
run: |
trivy image \
--username ${{ env.user }} \
--password ${{ secrets.DOCKER_PULL_TOKEN }} \
--exit-code 1 \
--scanners vuln,misconfig,secret \
--severity HIGH,CRITICAL \
--ignore-unfixed \
--platform linux/386 \
${{ env.registry_gitea }}/${{ env.user }}/${{ env.image_name }}:${{ env.image_tag }}
- name: Scan linux/arm64-image
run: |
trivy image \
--username ${{ env.user }} \
--password ${{ secrets.DOCKER_PULL_TOKEN }} \
--exit-code 1 \
--scanners vuln,misconfig,secret \
--severity HIGH,CRITICAL \
--ignore-unfixed \
--platform linux/arm64 \
${{ env.registry_gitea }}/${{ env.user }}/${{ env.image_name }}:${{ env.image_tag }}
- name: Scan linux/arm/v7-image
run: |
trivy image \
--username ${{ env.user }} \
--password ${{ secrets.DOCKER_PULL_TOKEN }} \
--exit-code 1 \
--scanners vuln,misconfig,secret \
--severity HIGH,CRITICAL \
--ignore-unfixed \
--platform linux/arm/v7 \
${{ env.registry_gitea }}/${{ env.user }}/${{ env.image_name }}:${{ env.image_tag }}

1
Dockerfile
View File

@@ -10,6 +10,7 @@ ENV PYTHONUNBUFFERED=1
ENV SERVER_PORT=19998
RUN apt-get update && \
apt-get upgrade -y && \
if [ "$TARGETPLATFORM" = "linux/arm/v7" ] || [ "$TARGETPLATFORM" = "linux/386" ]; then \
apt-get install -y --no-install-recommends zlib1g-dev libjpeg-dev gcc; \
fi && \