From 06cc4fb5b35d4135f868d935768b1424fabd591e Mon Sep 17 00:00:00 2001
From: Gary <26419401+Gary-H9@users.noreply.github.com>
Date: Mon, 7 Oct 2024 16:46:47 +0100
Subject: [PATCH] =?UTF-8?q?=F0=9F=A9=B9=20=20Use=20Public=20ECR=20for=20Tr?=
 =?UTF-8?q?ivy=20artifacts=20(#276)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

:plaster: Use Public ECR for Trivy artifacts
---
 .github/workflows/scan-image.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/scan-image.yml b/.github/workflows/scan-image.yml
index 0334bee..8044d54 100644
--- a/.github/workflows/scan-image.yml
+++ b/.github/workflows/scan-image.yml
@@ -43,6 +43,9 @@ jobs:
         if: failure() && steps.scan_image.outcome == 'failure'
         id: scan_image_on_failure
         uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # v0.24.0
+        env:
+          TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
+          TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
         with:
           image-ref: ingestion-scan
           exit-code: 1