fix: temporarily disable trivy-scan-image

This commit is contained in:
Joe Previte 2021-05-24 10:55:15 -07:00
parent 99542e67aa
commit ff93932ba2
No known key found for this signature in database
GPG Key ID: 2C91590C6B742C24

View File

@ -434,7 +434,9 @@ jobs:
trivy-scan-image: trivy-scan-image:
runs-on: ubuntu-20.04 runs-on: ubuntu-20.04
needs: docker-amd64 needs: docker-amd64
# NOTE@jsjoeio: disabling due to a memory issue upstream
# See: https://github.com/github/codeql-action/issues/528
if: 1 == 2
steps: steps:
- name: Checkout code - name: Checkout code
uses: actions/checkout@v2 uses: actions/checkout@v2
@ -457,6 +459,9 @@ jobs:
output: "trivy-image-results.sarif" output: "trivy-image-results.sarif"
severity: "HIGH,CRITICAL" severity: "HIGH,CRITICAL"
- name: Debug Trivy SARIF file
run: cat trivy-image-results.sarif && ls -l trivy-image-results.sarif
- name: Upload Trivy scan results to GitHub Security tab - name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v1 uses: github/codeql-action/upload-sarif@v1
with: with: