fix trivy error on vulnerability testing (#1843)

2024-11-08 03:36:10 -05:00
parent 09423fb4be
commit 9e87184fbf
1 changed files with 4 additions and 1 deletions
@@ -22,7 +22,7 @@ jobs:
        working-directory: .
    steps:
    - name: Checkout pygeoapi
-      uses: actions/checkout@v4
+      uses: actions/checkout@master
    - name: Scan vulnerabilities with trivy
      uses: aquasecurity/trivy-action@master
      with:
@@ -37,6 +37,9 @@ jobs:
        docker buildx build -t ${{ github.repository }}:${{ github.sha }} --platform linux/amd64 --no-cache -f Dockerfile .
    - name: Scan locally built Docker image for vulnerabilities with trivy
      uses: aquasecurity/trivy-action@master
+      env:
+        TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
+        TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
      with:
        scan-type: image
        exit-code: 1