chore(deps): bump aquasecurity/trivy-action from 0.14.0 to 0.23.0 #104
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Reference from https://github.com/eclipse-tractusx/app-dashboard/blob/main/.github/workflows/build-image.yaml | |
| # You might want to check the source for recent updates | |
| name: Build Backend - Docker image (SemVer) | |
| on: | |
| push: | |
| branches: | |
| - main | |
| # trigger events for SemVer like tags | |
| tags: | |
| - 'v*.*.*' | |
| - 'v*.*.*-*' | |
| pull_request: | |
| branches: | |
| - main | |
| env: | |
| IMAGE_NAMESPACE: "tractusx" | |
| IMAGE_NAME: "vas-country-risk-backend" | |
| jobs: | |
| docker: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| packages: write | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| # Create SemVer or ref tags dependent of trigger event | |
| - name: Docker meta | |
| id: meta | |
| uses: docker/metadata-action@v5 | |
| with: | |
| images: | | |
| ${{ env.IMAGE_NAMESPACE }}/${{ env.IMAGE_NAME }} | |
| # Automatically prepare image tags; See action docs for more examples. | |
| # semver patter will generate tags like these for example :1 :1.2 :1.2.3 | |
| tags: | | |
| type=ref,event=branch | |
| type=ref,event=pr | |
| type=semver,pattern={{version}} | |
| type=semver,pattern={{major}} | |
| type=semver,pattern={{major}}.{{minor}} | |
| - name: DockerHub login | |
| if: github.event_name != 'pull_request' | |
| uses: docker/[email protected] | |
| with: | |
| # Use existing DockerHub credentials present as secrets | |
| username: ${{ secrets.DOCKER_HUB_USER }} | |
| password: ${{ secrets.DOCKER_HUB_TOKEN }} | |
| - name: Build and push | |
| uses: docker/[email protected] | |
| with: | |
| context: . | |
| file: ./backend/Dockerfile | |
| push: ${{ github.event_name != 'pull_request' }} | |
| tags: | | |
| ${{ steps.meta.outputs.tags }}, | |
| ${{ env.IMAGE_NAMESPACE }}/${{ env.IMAGE_NAME }}:latest | |
| labels: ${{ steps.meta.outputs.labels }} | |
| # https://github.com/peter-evans/dockerhub-description | |
| # Important step to push image description to DockerHub | |
| - name: Update Docker Hub description | |
| if: github.event_name != 'pull_request' | |
| uses: peter-evans/dockerhub-description@v4 | |
| with: | |
| # readme-filepath defaults to toplevel README.md, Only necessary if you have a dedicated file with your 'Notice for docker images' | |
| readme-filepath: ./backend/DOCKER_NOTICE.md | |
| username: ${{ secrets.DOCKER_HUB_USER }} | |
| password: ${{ secrets.DOCKER_HUB_TOKEN }} | |
| repository: ${{ env.IMAGE_NAMESPACE }}/${{ env.IMAGE_NAME }} |