update config

.github/workflows/daily-vul-scan.yml

@@ -8,15 +8,8 @@ on:
   # pull_request:
   # workflow_dispatch:
 
-permissions:
-  contents: read
-
 jobs:
   build:
-    permissions:
-      contents: read # for actions/checkout to fetch code
-      security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
-      actions: read # only required for a private repository by github/codeql-
     name: Build
     runs-on: ubuntu-latest
     steps:
@@ -44,17 +37,10 @@ jobs:
         with:
           scan-type: image
           image-ref: "zozo-gatling-operator:${{ github.sha }}"
-          format: "template"
-          template: '@/contrib/sarif.tpl'
-          output: 'trivy-results.sarif'
+          format: "sarif"
           exit-code: "1"
           ignore-unfixed: false
           vuln-type: "os,library"
           severity: "HIGH,CRITICAL"
           timeout: "5m0s"
           scanners: "vuln,secret,config"
-
-      - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: 'trivy-results.sarif'