mirror of
https://github.com/wimpysworld/stream-sprout
synced 2026-03-14 14:45:50 +01:00
26 lines
No EOL
589 B
YAML
26 lines
No EOL
589 B
YAML
name: "Vulnerability 🐞 scan 🔍 container"
|
|
|
|
on:
|
|
schedule:
|
|
- cron: "0 10 * * 2"
|
|
workflow_dispatch:
|
|
|
|
jobs:
|
|
vulnerability-scan:
|
|
name: "Build and scan"
|
|
runs-on: ubuntu-24.04
|
|
steps:
|
|
- name: Set up Docker Buildx
|
|
uses: docker/setup-buildx-action@v2
|
|
|
|
- name: build local container
|
|
uses: docker/build-push-action@v4
|
|
with:
|
|
tags: localbuild/testimage:latest
|
|
push: false
|
|
load: true
|
|
|
|
- name: Scan image
|
|
uses: anchore/scan-action@v3
|
|
with:
|
|
image: "localbuild/testimage:latest" |