chore: remove trivy scans from build workflow

DarkAtra · Aug 9, 2024 · bba7b53 · bba7b53
1 parent fa4be0a
commit bba7b53
Showing 1 changed file with 0 additions and 18 deletions.
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -19,8 +19,6 @@ permissions:
   pull-requests: write
   # used to publish the docker image
   packages: write
-  # used by trivy
-  security-events: write
 
 jobs:
   verify:
@@ -89,19 +87,3 @@ jobs:
             @semantic-release/exec
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-
-      - name: Get Image Name
-        id: get-image-name
-        run: echo "image-name=$(mvn help:evaluate -Dexpression=image.name -q -DforceStdout)" >> $GITHUB_OUTPUT
-
-      - name: Scan Docker Image for Vulnerabilities
-        uses: aquasecurity/[email protected]
-        with:
-          image-ref: ${{ steps.get-image-name.outputs.image-name }}
-          format: sarif
-          output: trivy-results.sarif
-
-      - name: Upload Trivy Results to GitHub Security Tab
-        uses: github/codeql-action/upload-sarif@v3
-        with:
-          sarif_file: trivy-results.sarif