fix: ignorefile on trivy scan

LerianStudio · Dec 3, 2024 · 059a873 · 059a873
1 parent 1561452
commit 059a873
Showing 1 changed file with 11 additions and 1 deletion.
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -1,8 +1,17 @@
 name: "Build"
 
+#Habilitar isso após os testes
+# on:
+#   push:
+#     tags:
+#       - '**'
+
 on:
   push:
-    tags:
+    branches:
+      - '**'  
+  pull_request:
+    branches:
       - '**'
 
 permissions:
@@ -55,6 +64,7 @@ jobs:
       with:
         image-ref: '${{ env.DOCKERHUB_ORG }}/${{ env.APP_NAME }}:${{ steps.extract_tag.outputs.tag }}'
         format: 'table'
+        ignorefile: 'trivy-ignore.yaml'
         ignore-unfixed: true
         vuln-type: 'os,library'
         severity: 'CRITICAL,HIGH'