From 043cdb06978d5fcdbef59182467ceb7f5cb6f444 Mon Sep 17 00:00:00 2001 From: Avgustin Marinov Date: Thu, 9 Jan 2025 14:19:09 +0200 Subject: [PATCH] Fix Trivy Signed-off-by: Avgustin Marinov --- .github/workflows/trivy-scan.yml | 8 +------- 1 file changed, 1 insertion(+), 7 deletions(-) diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml index 691487a767..5fb0bfcc2d 100644 --- a/.github/workflows/trivy-scan.yml +++ b/.github/workflows/trivy-scan.yml @@ -11,12 +11,6 @@ jobs: scan: runs-on: ubuntu-latest - permissions: - contents: read - packages: read - # seems needed for github/codeql-action/upload-sarif - actions: write - steps: - name: Checkout code uses: actions/checkout@v4 @@ -61,5 +55,5 @@ jobs: - name: Upload Docker image scan results to GitHub Security tab uses: github/codeql-action/upload-sarif@v3 with: - sarif_file: 'scans/eclipse-hawkbit/hawkbit' + sarif_file: 'scans/eclipse-hawkbit/hawkbit/hawkbit-update-server:latest.sarif' category: "Container Images"