Update oss_pygoat-devsecops-basic.yml

emmanuel-knafo · web-flow · commit 8d17c2f9a176 · 2024-05-27T22:54:48.000-04:00
diff --git a/.github/workflows/oss_pygoat-devsecops-basic.yml b/.github/workflows/oss_pygoat-devsecops-basic.yml
@@ -138,6 +138,13 @@ jobs:
       - name: Push Docker image ${{ env.image }}:latest
         if: env.pushDockerImage == 'true'
         run: docker push ${{ env.image }}:latest
+      - name: Aqua Security Trivy
+        # You may pin to the exact commit or the version.
+        # uses: aquasecurity/trivy-action@fd25fed6972e341ff0007ddb61f77e88103953c2
+        uses: aquasecurity/trivy-action@0.21.0
+        with:          
+          # image reference(for backward compatibility)
+          image-ref: ${{ env.image }}:latest
   devsecops-tasks:
     name: Do DevSecOps Tasks
     needs:
@@ -175,7 +182,7 @@ jobs:
       - name: Upload results to Security tab
         uses: github/codeql-action/upload-sarif@v2
         with:
-          sarif_file: ${{ steps.msdo.outputs.sarifFile }}
+          sarif_file: ${{ steps.msdo.outputs.sarifFile }}      
   test-run_devopsshield_scan_linux:
     name: Run DevOps Shield Scan Linux
     needs:
