From 73c076a95135e1b291af90deb8c549cff2066f7a Mon Sep 17 00:00:00 2001 From: Thomas Laubrock Date: Fri, 14 Apr 2023 20:38:32 +0200 Subject: [PATCH] Update main.yml --- .github/workflows/main.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 45ae843..7258809 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -50,7 +50,7 @@ jobs: - name: Run Aqua scanner uses: docker://aquasec/aqua-scanner with: - args: trivy rootfs -d --scanners config,vuln,secret . + args: trivy fs -d --scanners config,vuln,secret --stast . # To customize which severities to scan for, add the following flag: --severity UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL # To enable SAST scanning, add: --sast # To enable npm/dotnet non-lock file scanning, add: --package-json / --dotnet-proj