sigs.k8s.io/cluster-api-provider-azure@v1.14.3/.github/workflows/scan.yml

sigs.k8s.io/cluster-api-provider-azure@v1.14.3/.github/workflows/scan.yml (about)

     1  name: scan-images
     2  
     3  on:
     4    schedule:
     5      - cron: "0 12 * * 1"
     6  
     7  # Remove all permissions from GITHUB_TOKEN except metadata.
     8  permissions: {}
     9  
    10  jobs:
    11    scan:
    12      name: Trivy
    13      runs-on: ubuntu-latest
    14      steps:
    15        - name: Harden Runner
    16          uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
    17          with:
    18            egress-policy: audit
    19  
    20        - name: Check out code
    21          uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # tag=v4.1.1
    22        - name: Setup go
    23          uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
    24          with:
    25            go-version: 1.20
    26        - name: Run verify container script
    27          run: make verify-container-images