Skip to content

Commit a35bbee

Browse files
wolf31o2wolf31o2
authored
ci: reduce os package scan noise (#18)
Signed-off-by: Chris Gianelloni <wolf31o2@blinklabs.io>
1 parent fc497f2 commit a35bbee

File tree

1 file changed

+2
-0
lines changed

1 file changed

+2
-0
lines changed

.github/workflows/publish.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -64,6 +64,8 @@ jobs:
6464
scan-ref: 'ghcr.io/blinklabs-io/openvpn:${{ env.FIRST_TAG }}'
6565
format: 'sarif'
6666
output: 'trivy-results-${{ env.FIRST_TAG }}.sarif'
67+
ignore-unfixed: true
68+
severity: 'HIGH,CRITICAL'
6769
- name: Upload Trivy scan results to GitHub Security tab
6870
uses: github/codeql-action/upload-sarif@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5
6971
if: always()

0 commit comments

Comments
 (0)