ci: echo URL

dbsystel · Dec 25, 2024 · 3445d5a · 3445d5a
1 parent b7886c0
commit 3445d5a
Showing 1 changed file with 19 additions and 3 deletions.
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
@@ -16,8 +16,24 @@ jobs:
         uses: aquasecurity/trivy-action@0.28.0
         with:
           image-ref: "trivy-explorer"
-          format: "table"
-          exit-code: "1"
+          output: trivy-report.json
+          format: json
+          exit-code: "0"
           ignore-unfixed: true
           vuln-type: "os,library"
-          severity: "CRITICAL,HIGH"
+          severity: "CRITICAL"
+      - name: Upload Vulnerability Scan Results
+        uses: actions/upload-artifact@v4
+        with:
+          name: trivy-report
+          path: trivy-report.json
+          retention-days: 30
+      - name: Get the JSON Report Download URL
+        id: get_report_url
+        run: |
+          repo_url="https://raw.githubusercontent.com/${{ github.repository }}/${{ github.ref_name }}/trivy-report.json"
+          echo "::set-output name=report_url::${repo_url}"
+      - name: Display Vulnerability Report URL
+        run: |
+          echo "You can view the vulnerability report here:"
+          echo "https://dbsystel.github.io/trivy-vulnerability-explorer/#/?url=${{ steps.get_report_url.outputs.report_url }}"