Bump snyk/actions from 806182742461562b67788a64410098c9d9b96adb to a1346e4eaf761d462da22c34c681dc06849b6851 #21
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Docker scans | |
on: | |
push: | |
branches: | |
- main | |
paths-ignore: | |
- ".ado/**" | |
- "README.md" | |
pull_request: | |
branches: | |
- main | |
workflow_dispatch: | |
jobs: | |
checkov: | |
permissions: | |
contents: read | |
security-events: write | |
uses: 0GiS0/scan-docker-vulnerabilities/.github/workflows/checkov.yaml@main | |
trivy: | |
permissions: | |
contents: read | |
security-events: write | |
uses: 0GiS0/scan-docker-vulnerabilities/.github/workflows/trivy.yaml@main | |
grype: | |
permissions: | |
contents: read | |
security-events: write | |
uses: 0GiS0/scan-docker-vulnerabilities/.github/workflows/grype.yaml@main | |
snyk: | |
permissions: | |
contents: read | |
security-events: write | |
uses: 0GiS0/scan-docker-vulnerabilities/.github/workflows/snyk.yaml@main | |
secrets: | |
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} |