diff --git a/.github/workflows/vulnerability-scan.yml b/.github/workflows/vulnerability-scan.yml index 0e5464a9a..618598f02 100644 --- a/.github/workflows/vulnerability-scan.yml +++ b/.github/workflows/vulnerability-scan.yml @@ -21,8 +21,10 @@ jobs: run: docker build . --file Dockerfile --tag symfony-flex-backend:master - name: Scan image with Trivy - uses: lazy-actions/gitrivy@v3 + uses: aquasecurity/trivy-action@0.28.0 with: - token: ${{ secrets.GITHUB_TOKEN }} - image: symfony-flex-backend:master - ignore-unfixed: true + image-ref: symfony-flex-backend:master + ignore-unfixed: 'true' + exit-code: '1' + vuln-type: 'os,library' + severity: 'CRITICAL,HIGH'