Skip to content

Commit

Permalink
fix: do not fail on cve, upload sarif
Browse files Browse the repository at this point in the history
Signed-off-by: Robert Waffen <[email protected]>
  • Loading branch information
rwaffen committed Aug 30, 2024
1 parent 6ab3c16 commit 1e45102
Showing 1 changed file with 10 additions and 0 deletions.
10 changes: 10 additions & 0 deletions .github/workflows/container_scanning.yml
Original file line number Diff line number Diff line change
Expand Up @@ -46,5 +46,15 @@ jobs:
- name: Scan image with Anchore Grype
uses: anchore/scan-action@v3
id: scan
with:
image: 'ci/test:${{ matrix.puppet_release }}'
fail-build: false

- name: Inspect action SARIF report
run: jq . ${{ steps.scan.outputs.sarif }}

- name: Upload Anchore scan SARIF report
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: ${{ steps.scan.outputs.sarif }}

0 comments on commit 1e45102

Please sign in to comment.