diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml index a79a315..c65b9d5 100644 --- a/.github/workflows/trivy-scan.yml +++ b/.github/workflows/trivy-scan.yml @@ -24,11 +24,14 @@ jobs: - name: Create lib directory if not exists run: mkdir -p ballerina/lib - name: Run Trivy vulnerability scanner + env: + TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db + TRIVY_JAVA_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-java-db,public.ecr.aws/aquasecurity/trivy-java-db uses: aquasecurity/trivy-action@master with: scan-type: 'rootfs' - scan-ref: '/github/workspace/ballerina/lib' + scan-ref: '${{ github.workspace.ballerina.lib }}/' format: 'table' timeout: '10m0s' exit-code: '1' - \ No newline at end of file +