Edit workflow

broadinstitute · Jul 25, 2024 · 6ca8e93 · 6ca8e93
1 parent 1eb80f4
commit 6ca8e93
Showing 1 changed file with 4 additions and 8 deletions.
diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
@@ -2,26 +2,22 @@ name: dsp-appsec-trivy
 on:
   pull_request:
   schedule:
-    - cron: '0 14 * * 1' # each Monday at 9am EST
+    - cron: '0 0 * * 0'
 
 jobs:
   appsec-trivy:
     # Parse Dockerfile and build, scan image if a "blessed" base image is not used
     name: DSP AppSec Trivy check
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
 
       - uses: broadinstitute/dsp-appsec-trivy-action@v1
         with:
           sarif: trivy-results.sarif
 
-      - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v1
-        if: ${{ !github.base_ref }} # omit upload on PRs
-        with:
-          sarif_file: trivy-results.sarif
-
        - name: Notify in Slack
         if: failure()
         uses: broadinstitute/action-slack@v3.15.0