Trivy #957

	name: Trivy

	on:
	workflow_dispatch:
	schedule:
	- cron: '30 20 * * *'

	jobs:
	ubuntu-build:
	name: Build on Ubuntu
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3
	- name: Set up JDK 17
	uses: actions/setup-java@v3
	with:
	distribution: 'adopt'
	java-version: 17.0.7

	- name: Build with Gradle
	env:
	packageUser: ${{ github.actor }}
	packagePAT: ${{ secrets.GITHUB_TOKEN }}
	run: ./gradlew build -x check -x test

	- name: Create lib directory if not exists
	run: mkdir -p transaction-ballerina/lib

	- name: Run Trivy vulnerability scanner
	uses: aquasecurity/trivy-action@master
	with:
	scan-type: 'rootfs'
	scan-ref: '/github/workspace/transaction-ballerina/lib'
	format: 'table'
	timeout: '10m0s'
	exit-code: '1'

Provide feedback