Don't fail workflow if vulns are found, use sarif upload instead

pgschk · Jan 20, 2024 · 3ee75d8 · 3ee75d8
1 parent d30518f
commit 3ee75d8
Showing 1 changed file with 0 additions and 3 deletions.
diff --git a/.github/workflows/trivy-schedule.yml b/.github/workflows/trivy-schedule.yml
@@ -18,11 +18,8 @@ jobs:
     steps:
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@0.16.1
-        env:
-          TRIVY_OFFLINE_SCAN: true
         with:
           image-ref: '${{ env.IMAGE_NAME }}:${{ env.IMAGE_TAG }}'
-          exit-code: '1'
           ignore-unfixed: true
           vuln-type: 'os,library'
           format: 'sarif'