ci: add read-only pull secret to security build
This commit is contained in:
parent
787ddfc6ab
commit
64e267f64b
@ -12,6 +12,8 @@ steps:
|
|||||||
containerfile: Containerfile.multiarch
|
containerfile: Containerfile.multiarch
|
||||||
output: type=oci,dest=oci/${CI_REPO_NAME},tar=false
|
output: type=oci,dest=oci/${CI_REPO_NAME},tar=false
|
||||||
repo: thegeeklab/${CI_REPO_NAME}
|
repo: thegeeklab/${CI_REPO_NAME}
|
||||||
|
registry_config:
|
||||||
|
from_secret: DOCKER_REGISTRY_CONFIG_PULL
|
||||||
|
|
||||||
- name: security-scan
|
- name: security-scan
|
||||||
image: docker.io/aquasec/trivy
|
image: docker.io/aquasec/trivy
|
||||||
|
Loading…
Reference in New Issue
Block a user