Skip to content

Commit

Permalink
feat: add trivy image scan
Browse files Browse the repository at this point in the history
  • Loading branch information
sebthom committed Apr 22, 2024
1 parent 16949a3 commit abe1e53
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 0 deletions.
2 changes: 2 additions & 0 deletions .trivyignore
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
# secrets - false positive
github-app-token
8 changes: 8 additions & 0 deletions build-image.sh
Original file line number Diff line number Diff line change
Expand Up @@ -77,6 +77,14 @@ DOCKER_BUILDKIT=1 docker build "$project_root" \
"$@"


#################################################
# perform security audit
#################################################
if [[ "${DOCKER_AUDIT_IMAGE:-1}" == 1 ]]; then
bash "$shared_lib/cmd/audit-image.sh" $image_name
fi


#################################################
# push image with tags to remote docker image registry
#################################################
Expand Down

0 comments on commit abe1e53

Please sign in to comment.