From 044bc892e867158875e00cdd0e334efa0ec41c3d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Serta=C3=A7=20=C3=96zercan?= <852750+sozercan@users.noreply.github.com> Date: Wed, 13 Nov 2024 15:18:11 -0800 Subject: [PATCH] ci: fix trivy throttling (#3696) Signed-off-by: Sertac Ozercan --- .github/workflows/scan-vulns.yaml | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/.github/workflows/scan-vulns.yaml b/.github/workflows/scan-vulns.yaml index 83c5162bfbb..f014b1b00a5 100644 --- a/.github/workflows/scan-vulns.yaml +++ b/.github/workflows/scan-vulns.yaml @@ -64,6 +64,12 @@ jobs: env: TRIVY_VERSION: "0.57.0" + - name: Download trivy db + run: | + trivy image \ + --download-db-only \ + --db-repository=ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db,docker.io/aquasec/trivy-db + - name: Run trivy on git repository run: | trivy fs --format table --ignore-unfixed --skip-dirs website --scanners vuln .