Create vulnerability_check.yml #1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: vulnerability checker | |
| on: | |
| # Trigger the workflow on push or pull request, | |
| # but only for the master branch | |
| push: | |
| branches: | |
| - master | |
| pull_request: | |
| branches: | |
| - master | |
| jobs: | |
| scan: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| - name: Scan for vulnerabilities for ckan image | |
| uses: crazy-max/ghaction-container-scan@v3 | |
| with: | |
| dockerfile: ./ckan/Dockerfile | |
| - name: Scan for vulnerabilities for ckan xloader image | |
| uses: crazy-max/ghaction-container-scan@v3 | |
| with: | |
| dockerfile: ./ckan/ckanext-xloader/Dockerfile |