delete trivy as lately its been terribly unreliable

Signed-off-by: strawberry <strawberry@puppygock.gay>
This commit is contained in:
strawberry 2024-11-15 13:19:32 -05:00
parent 9783bc78ba
commit 666989f74c
2 changed files with 1 additions and 44 deletions

View File

@ -1,42 +0,0 @@
name: Trivy code and vulnerability scanning
on:
pull_request:
push:
branches:
- main
tags:
- '*'
schedule:
- cron: '00 12 * * *'
permissions:
contents: read
jobs:
trivy-scan:
name: Trivy Scan
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
actions: read
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Run Trivy code and vulnerability scanner on repo
uses: aquasecurity/trivy-action@0.28.0
with:
scan-type: repo
format: sarif
output: trivy-results.sarif
severity: CRITICAL,HIGH,MEDIUM,LOW
- name: Run Trivy code and vulnerability scanner on filesystem
uses: aquasecurity/trivy-action@0.28.0
with:
scan-type: fs
format: sarif
output: trivy-results.sarif
severity: CRITICAL,HIGH,MEDIUM,LOW

View File

@ -241,8 +241,7 @@ both new users and power users
- Fixed every single clippy (default lints) and rustc warnings, including some - Fixed every single clippy (default lints) and rustc warnings, including some
that were performance related or potential safety issues / unsoundness that were performance related or potential safety issues / unsoundness
- Add a **lot** of other clippy and rustc lints and a rustfmt.toml file - Add a **lot** of other clippy and rustc lints and a rustfmt.toml file
- Repo uses [Renovate](https://docs.renovatebot.com/), - Repo uses [Renovate](https://docs.renovatebot.com/) and keeps ALL
[Trivy](https://github.com/aquasecurity/trivy-action), and keeps ALL
dependencies as up to date as possible dependencies as up to date as possible
- Purge unmaintained/irrelevant/broken database backends (heed, sled, persy) and - Purge unmaintained/irrelevant/broken database backends (heed, sled, persy) and
other unnecessary code or overhead other unnecessary code or overhead