From 8d2be1f23de1462f4bfbbe0b954d1cf2e631e2be Mon Sep 17 00:00:00 2001
From: Robert Kaussow <mail@thegeeklab.de>
Date: Thu, 14 Dec 2023 11:05:35 +0100
Subject: [PATCH] ci: switch to trivy config file

---
 .woodpecker/build-container.yml | 1 -
 trivy.yaml                      | 5 +++++
 2 files changed, 5 insertions(+), 1 deletion(-)
 create mode 100644 trivy.yaml

diff --git a/.woodpecker/build-container.yml b/.woodpecker/build-container.yml
index 970de97..73942b4 100644
--- a/.woodpecker/build-container.yml
+++ b/.woodpecker/build-container.yml
@@ -24,7 +24,6 @@ steps:
       TRIVY_NO_PROGRESS: "true"
       TRIVY_SEVERITY: HIGH,CRITICAL
       TRIVY_TIMEOUT: 1m
-      TRIVY_SKIP_FILES: /usr/local/bin/gomplate,/usr/local/bin/yq
 
   publish-dockerhub:
     group: container
diff --git a/trivy.yaml b/trivy.yaml
new file mode 100644
index 0000000..c257e50
--- /dev/null
+++ b/trivy.yaml
@@ -0,0 +1,5 @@
+---
+scan:
+  skip-files:
+    - /usr/local/bin/gomplate
+    - /usr/local/bin/yq