diff --git a/.github/workflows/sdl.yml b/.github/workflows/sdl.yml index ffbd743ca..74ac15e66 100644 --- a/.github/workflows/sdl.yml +++ b/.github/workflows/sdl.yml @@ -53,31 +53,3 @@ jobs: bandit -c pyproject.toml -r python working-directory: ${{ env.OPENVINO_TOKENIZERS_REPO }} - trivy_scan: - name: code_scanning - runs-on: ubuntu-latest - steps: - - name: Checkout code - uses: actions/checkout@v4 - - - name: Run Trivy vulnerability scanner in repo mode - uses: aquasecurity/trivy-action@master - with: - scan-type: 'fs' - ignore-unfixed: true - format: 'sarif' - output: 'trivy-results.sarif' - severity: 'CRITICAL' - - # - name: Upload Trivy scan results to GitHub Security tab - # uses: github/codeql-action/upload-sarif@v3 - # with: - # sarif_file: 'trivy-results.sarif' - - - name: Upload Trivy scan results - if: ${{ always() }} - uses: actions/upload-artifact@v4 - with: - name: trivy_results - path: 'trivy-results.sarif' - if-no-files-found: 'error'