Create container-scan.yml

akmshasan · Mar 9, 2024 · fa54e51 · fa54e51
1 parent c9a4116
commit fa54e51
Showing 1 changed file with 17 additions and 0 deletions.
diff --git a/.github/workflows/container-scan.yml b/.github/workflows/container-scan.yml
@@ -0,0 +1,17 @@
+name: Container Scan
+on: [push]
+jobs:
+  container-scan:
+      runs-on: ubuntu-latest
+      # needs: [ci]
+
+      steps:
+      - name : Checkout code
+        uses: actions/checkout@v4
+
+      - name: Run Trivy vulnerability scanner
+        uses: aquasecurity/trivy-action@master
+        with:
+          image-ref: '${{ secrets.DOCKERHUB_USERNAME }}/fastapi-starter:latest'
+          format: 'table'
+          exit-code: '1'