Skip to content

Temporarily enable CVE scanning per push for testing. #10

Temporarily enable CVE scanning per push for testing.

Temporarily enable CVE scanning per push for testing. #10

Workflow file for this run

name: Scan
on:
schedule:
- cron: 0 0 * * *
push:
jobs:
scan:
runs-on: ubuntu-latest
steps:
- name: Install State Tool
uses: ActiveState/setup-state-tool@v1
- name: Get State Tool binaries path
id: get_bin_dir
shell: bash
run: |
exe=`which state`
dir=`dirname $exe`
echo "STATE_TOOL_BIN_DIR=$dir" >> "$GITHUB_OUTPUT"
- name: Scan binaries
uses: aquasecurity/[email protected]
with:
scan-type: rootfs
scan-ref: ${{ steps.get_bin_dir.outputs.STATE_TOOL_BIN_DIR }}
ignore-unfixed: true
format: table
exit-code: 1