File tree Expand file tree Collapse file tree 1 file changed +30
-0
lines changed
.github/workflows/anchore-analysis.ymlhttps: Expand file tree Collapse file tree 1 file changed +30
-0
lines changed Original file line number Diff line number Diff line change 1+ # This workflow checks out code, performs an Anchore container image
2+ # vulnerability and compliance scan, and integrates the results with
3+ # GitHub Advanced Security code scanning feature. For more information on
4+ # the Anchore scan action usage and parameters, see
5+ # https://github.com/anchore/scan-action. For more information on
6+ # Anchore container image scanning in general, see
7+ # https://docs.anchore.com.
8+
9+ name: Anchore Container Scan
10+
11+ on: push
12+
13+ jobs:
14+ Anchore-Build-Scan:
15+ runs-on: ubuntu-latest
16+ steps:
17+ - name: Checkout the code
18+ uses: actions/checkout@v2
19+ - name: Build the Docker image
20+ run: docker build . --file Dockerfile --tag localbuild/testimage:latest
21+ - name: Run the local Anchore scan action itself with GitHub Advanced Security code scanning integration enabled
22+ uses: anchore/scan-action@master
23+ with:
24+ image-reference: "localbuild/testimage:latest"
25+ dockerfile-path: "Dockerfile"
26+ acs-report-enable: true
27+ - name: Upload Anchore Scan Report
28+ uses: github/codeql-action/upload-sarif@v1
29+ with:
30+ sarif_file: results.sarif
You can’t perform that action at this time.
0 commit comments