borekon/log4shell-vulnerable-app
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update main.yml

Browse Source
This commit is contained in:
Thomas Laubrock 2023-04-14 20:38:32 +02:00 committed by GitHub
parent 333d4f42ed
commit 73c076a951
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/main.yml vendored
View File

@ -50,7 +50,7 @@ jobs:
- name: Run Aqua scanner
uses: docker://aquasec/aqua-scanner
with:
args: trivy rootfs -d --scanners config,vuln,secret .
args: trivy fs -d --scanners config,vuln,secret --stast .
# To customize which severities to scan for, add the following flag: --severity UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL
# To enable SAST scanning, add: --sast
# To enable npm/dotnet non-lock file scanning, add: --package-json / --dotnet-proj