Skip to content

scan-images

scan-images #81

Workflow file for this run

name: scan-images
on:
schedule:
- cron: "0 12 * * 1"
# Remove all permissions from GITHUB_TOKEN except metadata.
permissions: {}
jobs:
scan:
name: Trivy
runs-on: ubuntu-latest
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
with:
egress-policy: audit
- name: Check out code
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1
- name: Setup go
uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
with:
go-version: 1.22
- name: Run verify container script
run: make verify-container-images