raoganeshr
raoganeshr
> hi @raoganeshr - you could do something like this: > > ``` > - name: Run Trivy vulnerability scanner with trivyignore > uses: aquasecurity/trivy-action@master > with: > trivyignore: /github/workspace/.trivyignore...
@simar7 any other suggestions?
Any plans to add this support?
Is this done?
@crazy-max Did GitHub come back on when will this be addressed? For us, this problem leads to creation of 3 image entries in GHCR. One is the main image and...
Ability to allow insecure connection like trivy would help here
@mikocot twistcli does have a --debug flag that logs much more details than what twistcli currently does as part of the action.
Same for me when scanning ubuntu:latest 2023-12-13T10:44:24.3240672Z ##[error]Code Scanning could not process the submitted SARIF file: SARIF URI scheme "ubuntu" did not match the checkout URI scheme "file", SARIF URI...