Skip to content

Commit

Permalink
ci: update trivy options (#1637)
Browse files Browse the repository at this point in the history 
Remove deprecated flag and do not scan secret as ovs has embed private key for ssl.
  • Loading branch information
@oilbeater @zhangzujian
oilbeater authored and zhangzujian committed Jun 23, 2022
1 parent 71dba39 commit 3cfafe4
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions Makefile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -312,8 +312,8 @@ lint:

.PHONY: scan
scan:
trivy image --security-checks vuln --light --exit-code=1 --severity=HIGH --ignore-unfixed kubeovn/kube-ovn:$(RELEASE_TAG)
trivy image --security-checks vuln --light --exit-code=1 --severity=HIGH --ignore-unfixed $(REGISTRY)/vpc-nat-gateway:$(RELEASE_TAG)
trivy image --exit-code=1 --severity=HIGH --ignore-unfixed --security-checks vuln $(REGISTRY)/kube-ovn:$(RELEASE_TAG)
trivy image --exit-code=1 --severity=HIGH --ignore-unfixed --security-checks vuln $(REGISTRY)/vpc-nat-gateway:$(RELEASE_TAG)

.PHONY: ut
ut:
Expand Down

0 comments on commit 3cfafe4

Please sign in to comment.