Skip to content
Build Dockerfile

ID-4867: Trust på nytt metadata-cert for Norge i demoland i TEST #69

Sign in to view logs

ID-4867: Trust på nytt metadata-cert for Norge i demoland i TEST

ID-4867: Trust på nytt metadata-cert for Norge i demoland i TEST #69

Workflow file for this run

.github/workflows/call-maventests.yml at e006cfe
name: Build Dockerfile
on:
pull_request:
branches: [ main ]
jobs:
build:
runs-on: ubuntu-latest
env:
IMAGE_NAME: my-local-registery/eidas-demo-country-ca
DOCKLE_HOST: "unix:///var/run/docker.sock"
steps:
- name: Set imagetag as env variable
run: echo "IMAGETAG=$(date +'%Y-%m-%d-%H%M')-${GITHUB_SHA::8}" >> "$GITHUB_ENV"
- uses: actions/checkout@v4
- name: Build the tagged Docker image
run: docker build --tag ${{ env.IMAGE_NAME}}:${{env.IMAGETAG}} --file docker/Dockerfile .
- uses: anchore/sbom-action@v0
with:
image: ${{ env.IMAGE_NAME}}:${{env.IMAGETAG}}
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # pin@v0.28.0
id: trivy-primary
env:
TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db:2,public.ecr.aws/aquasecurity/trivy-db:2
TRIVY_JAVA_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-java-db:1,public.ecr.aws/aquasecurity/trivy-java-db:1
with:
image-ref: "${{ env.IMAGE_NAME}}:${{env.IMAGETAG}}"
exit-code: "1"
severity: "CRITICAL,HIGH"