Fix: [AEA-0000] - Always run valid trivy scans even if a previous scan failed, so that all vulnerabilities are identified at once. Shorten feedback cycle for vulnerabilities across multiple scans. #359
connoravo-nhspull_request.yml
on: pull_request
get_config_values
/
get_config_values
5s
pr_title_format_check
/
pr_title_format_check
4s
quality_checks
/
quality_checks
2m 50s
quality_checks
/
IaC-validation
1m 30s
tag_release
/
tag_release
1m 52s
Matrix: quality_checks / docker_vulnerability_scan
dependabot-auto-approve-and-merge
/
dependabot
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom.cdx.json
|
23 KB |
sha256:da0d648b1ef340ec91574c5239ab9f16776ab2f9a260658ffac88ca2778ba810
|
|