build(deps): Bump aquasecurity/trivy-action from 0.19.0 to 0.21.0 #132

Workflow file for this run

	name: 🧪 Tests

	on:
	push:
	branches: [master, main]
	paths-ignore: ['**.md']
	tags-ignore: ['**']
	pull_request:
	paths-ignore: ['**.md']

	concurrency:
	group: ${{ github.ref }}
	cancel-in-progress: true

	jobs:
	git-leaks:
	name: 🔐 Check for GitLeaks
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3
	with: {fetch-depth: 0}

	- uses: gacts/gitleaks@v1

	dns-control:
	name: 🌐 DNSControl check
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3

	- uses: gacts/install-dnscontrol@v1

	- run: dnscontrol check
	working-directory: dns

	golangci-lint:
	name: 🧪 Run GolangCI-lint (docker-info plugin)
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3

	- uses: gacts/setup-go-with-cache@v1
	with: {go-version: 1.18}

	- uses: golangci/golangci-lint-action@v4
	with: {skip-pkg-cache: true, skip-build-cache: true, working-directory: ./traefik/plugins/docker-info}

	build-and-scan-docker-image:
	name: 🏗️ Build and scan the docker image
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3

	- uses: actions/github-script@v7
	id: date
	with: {script: 'return (new Date()).getMonth()', result-encoding: string}

	- uses: actions/cache@v4
	id: certs-cache # yea, I know about the sensitive data caching, bla bla bla
	with: {path: traefik/certs, key: 'config-certs-month-${{ steps.date.outputs.result }}-dry'}

	- if: steps.certs-cache.outputs.cache-hit != 'true'
	run: sh ./mkcert.sh
	env:
	CF_API_KEY: ${{ secrets.CF_API_KEY }}
	CF_EMAIL: ${{ secrets.CF_EMAIL }}
	DRY_RUN: 'true'

	- uses: docker/build-push-action@v4
	with:
	context: .
	push: false
	tags: app:local

	- uses: aquasecurity/[email protected]
	with:
	image-ref: app:local
	format: sarif
	severity: CRITICAL
	exit-code: 1
	output: trivy-results.sarif

	- uses: github/codeql-action/upload-sarif@v3
	if: always()
	continue-on-error: true
	with: {sarif_file: trivy-results.sarif}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): Bump aquasecurity/trivy-action from 0.19.0 to 0.21.0 #132

Workflow file

build(deps): Bump aquasecurity/trivy-action from 0.19.0 to 0.21.0 #132

Jobs

Run details

Workflow file for this run