ci: don't block alpha and beta releases on grype scans
This commit is contained in:
parent
52550f24b2
commit
8f915ea8bf
1 changed files with 2 additions and 0 deletions
2
.github/workflows/release.yml
vendored
2
.github/workflows/release.yml
vendored
|
|
@ -78,6 +78,7 @@ jobs:
|
|||
APP_VERSION=${{ needs.determine-release-type.outputs.tagname }}
|
||||
|
||||
- name: Scan new image for vulnerabilities
|
||||
if: needs.determine-release-type.outputs.release_type == 'release'
|
||||
uses: anchore/scan-action@v7
|
||||
id: scan
|
||||
with:
|
||||
|
|
@ -86,6 +87,7 @@ jobs:
|
|||
severity-cutoff: critical
|
||||
|
||||
- name: upload Anchore scan report
|
||||
if: needs.determine-release-type.outputs.release_type == 'release'
|
||||
uses: github/codeql-action/upload-sarif@v4
|
||||
with:
|
||||
sarif_file: ${{ steps.scan.outputs.sarif }}
|
||||
|
|
|
|||
Loading…
Reference in a new issue