chore: Update Trivy vulnerability scanner configuration to include OS…

… vulnerabilities and use actions/checkout@v4
Nayrode · Jun 3, 2024 · b1647a3 · b1647a3
1 parent dee84f4
commit b1647a3
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 4 deletions.
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -51,12 +51,11 @@ jobs:
       uses: aquasecurity/[email protected]
       with:
         image-ref: 'razano/ctcd'
-        format: 'template'
-        template: "@trivy/github-markdown.tpl"
+        format: 'table'
         output: trivy.md
         exit-code: '1'
         ignore-unfixed: true
-        vuln-type: 'library'
+        vuln-type: 'os,library'
         severity: 'CRITICAL,HIGH'
     - run: cat trivy.md >> $GITHUB_STEP_SUMMARY
       if: always()
diff --git a/Dockerfile b/Dockerfile
@@ -1,7 +1,7 @@
 FROM gradle:latest AS build
 WORKDIR /app
 COPY . .
-RUN ./gradlew assemblev --no-daemon
+RUN ./gradlew assemble --no-daemon
 
 FROM openjdk:23-slim-bookworm AS runtime
 COPY --from=build /app/build/libs/ctcd-0.0.1-SNAPSHOT.jar /app/ctcd-0.0.1-SNAPSHOT.jar