我在 GitHub 操作中的一个步骤如下
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@master
id: run_tests
with:
image-ref: 'docker.io/xxx/test:v1.1'
format: 'table'
exit-code: '0'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
我想显示此步骤的完整输出以松弛....
Running trivy with options: --no-progress --format table --exit-code 0 --ignore-unfixed --vuln-type os,library --severity CRITICAL,HIGH docker.io/xxx/test:v1.1
Global options:
2021-06-10T12:40:37.596Z INFO Need to update DB
2021-06-10T12:40:37.596Z INFO Downloading DB...
2021-06-10T12:40:38.978Z INFO Detecting Alpine vulnerabilities...
2021-06-10T12:40:38.978Z INFO Trivy skips scanning programming language libraries because no supported file was detected
2021-06-10T12:40:38.978Z WARN This OS version is no longer supported by the distribution: alpine 3.10.9
2021-06-10T12:40:38.978Z WARN The vulnerability detection may be insufficient because security updates are not provided
docker.io/xxx/test:v1.1 (alpine 3.10.9)
=======================================================================
Total: 0 (HIGH: 0, CRITICAL: 0)
有没有办法实现它...
非常感谢任何帮助。