Various updates for Go 1.18

Signed-off-by: Dave Henderson <dhenderson@gmail.com>
author: Dave Henderson <dhenderson@gmail.com> 2022-02-15 07:44:48 -0500
committer: Dave Henderson <dhenderson@gmail.com> 2022-03-22 09:23:40 -0400
commit: 599121067b25f64c3be687eae54ed2bfb9cca819 (patch)
tree: fd2d943f7ca1274c3b4606b04496f3f4542c9c8a /.github/workflows/image-scan.yml
parent: 1a084d95b7567f7e2da33e61c3e4168f656a22b5 (diff)
1 files changed, 15 insertions, 5 deletions
diff --git a/.github/workflows/image-scan.yml b/.github/workflows/image-scan.yml
index 991fb503..7e2654e1 100644
--- a/.github/workflows/image-scan.yml
+++ b/.github/workflows/image-scan.yml
@@ -16,15 +16,25 @@ jobs:
     - name: Quick build (linux/alpine only)
       run: |
         docker build --target gomplate-alpine -t gomplate .
-    - name: Scan with Trivy
+    - name: Run Trivy vulnerability scanner (table output)
       uses: aquasecurity/trivy-action@master
       with:
-        image-ref: 'gomplate'
-        format: 'template'
-        template: '@/contrib/sarif.tpl'
-        output: 'trivy-results.sarif'
+        image-ref: gomplate
+        format: table
         exit-code: 1
         ignore-unfixed: true
+        vuln-type: os,library
+        severity: CRITICAL,HIGH
+    - name: Run Trivy vulnerability scanner
+      uses: aquasecurity/trivy-action@master
+      with:
+        image-ref: gomplate
+        format: sarif
+        output: trivy-results.sarif
+        exit-code: 1
+        ignore-unfixed: true
+        vuln-type: os,library
+        severity: CRITICAL,HIGH
     - name: Upload Trivy scan results to GitHub Security tab
       uses: github/codeql-action/upload-sarif@v1
       with:
author	Dave Henderson <dhenderson@gmail.com>	2022-02-15 07:44:48 -0500
committer	Dave Henderson <dhenderson@gmail.com>	2022-03-22 09:23:40 -0400
commit	599121067b25f64c3be687eae54ed2bfb9cca819 (patch)
tree	fd2d943f7ca1274c3b4606b04496f3f4542c9c8a /.github/workflows/image-scan.yml
parent	1a084d95b7567f7e2da33e61c3e4168f656a22b5 (diff)