blob: 59940a9c7de354cd2d84976cd586905cf6bc42d1 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
---
platform: linux
image_resource:
type: registry-image
source: {repository: docker.io/aquasec/trivy}
inputs:
- name: docker-repo
- name: image
run:
path: ash
args:
- -euo
- pipefail
- -c
- |
trivy image \
--ignore-unfixed \
--severity HIGH,CRITICAL \
--exit-code ${EXIT_CODE} \
--ignorefile "${TRIVY_IGNORE}" \
--input "${INPUT_TAR}"
params:
TRIVY_IGNORE: docker-repo/.trivyignore
INPUT_TAR: image/image.tar
EXIT_CODE: 1
|