This is an automated email from the ASF dual-hosted git repository.
monkeydluffy pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/apisix-docker.git
The following commit(s) were added to refs/heads/master by this push:
new c129ef5 feat: support docker image scanning (#506)
c129ef5 is described below
commit c129ef542c7dabfae1f063bbe3dca7068ec37f64
Author: Abhishek Choudhary <[email protected]>
AuthorDate: Wed Sep 27 14:44:39 2023 +0545
feat: support docker image scanning (#506)
---
.github/workflows/apisix_dev_push_docker_hub.yaml | 6 ++++++
1 file changed, 6 insertions(+)
diff --git a/.github/workflows/apisix_dev_push_docker_hub.yaml
b/.github/workflows/apisix_dev_push_docker_hub.yaml
index 82fe243..08a9c57 100644
--- a/.github/workflows/apisix_dev_push_docker_hub.yaml
+++ b/.github/workflows/apisix_dev_push_docker_hub.yaml
@@ -66,3 +66,9 @@ jobs:
- name: Push apisix image to Docker Hub
run: |
make push-multiarch-dev-on-debian
+
+ - name: Run Trivy vulnerability scanner
+ uses: aquasecurity/trivy-action@master
+ with:
+ image-ref: 'apache/apisix:${{ APISIX_DOCKER_TAG }}'
+ severity: 'CRITICAL,HIGH'
