Bump snyk/actions from 806182742461562b67788a64410098c9d9b96adb to 8349f9043a8b7f0f3ee8885bf28f0b388d2446e8 #18
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Docker scans | |
on: | |
push: | |
branches: | |
- main | |
paths-ignore: | |
- ".ado/**" | |
- "README.md" | |
pull_request: | |
branches: | |
- main | |
workflow_dispatch: | |
jobs: | |
checkov: | |
permissions: | |
contents: read | |
security-events: write | |
uses: 0GiS0/scan-docker-vulnerabilities/.github/workflows/checkov.yaml@main | |
trivy: | |
permissions: | |
contents: read | |
security-events: write | |
uses: 0GiS0/scan-docker-vulnerabilities/.github/workflows/trivy.yaml@main | |
grype: | |
permissions: | |
contents: read | |
security-events: write | |
uses: 0GiS0/scan-docker-vulnerabilities/.github/workflows/grype.yaml@main | |
snyk: | |
permissions: | |
contents: read | |
security-events: write | |
uses: 0GiS0/scan-docker-vulnerabilities/.github/workflows/snyk.yaml@main | |
secrets: | |
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} |