Merge pull request #2487 from kubernetes-sigs/raffo/fix-trivy-again

Fix trivy workflow
2025-12-15 16:51:00 +01:00 · 2021-12-20 11:05:33 -08:00 · 2021-12-20 11:05:33 -08:00 · d3fd0ade88
commit d3fd0ade88
parent f3afef29b8 f6c05663ff
2 changed files with 3 additions and 3 deletions
--- a/.github/workflows/trivy.yml
+++ b/.github/workflows/trivy.yml
@ -1,8 +1,6 @@
 name: trivy vulnerability scanner
 on:
  push:
-    branches:
-      - master
 jobs:
  build:
    name: Build
--- a/scripts/run-trivy.sh
+++ b/scripts/run-trivy.sh
@ -2,10 +2,12 @@
 set -e

 # install trivy
+cd /tmp
 curl -LO https://github.com/aquasecurity/trivy/releases/download/v0.20.2/trivy_0.20.2_Linux-64bit.tar.gz 
 echo "38a6de48e21a34e0fa0d2cf63439c0afcbbae0e78fb3feada7a84a9cf6e7f60c trivy_0.20.2_Linux-64bit.tar.gz" | sha256sum -c 
 tar -xvf trivy_0.20.2_Linux-64bit.tar.gz
 chmod +x trivy

 # run trivy
-./trivy image --exit-code 1 us.gcr.io/k8s-artifacts-prod/external-dns/external-dns:$(git describe --tags --always --dirty)
+cd - 
+/tmp/trivy image --exit-code 1 us.gcr.io/k8s-artifacts-prod/external-dns/external-dns:$(git describe --tags --always --dirty)