ci: add read-only pull secret to security build

2024-11-14 21:10:01 +01:00 · 2024-11-14 21:10:01 +01:00 · 243c066ccd
commit 243c066ccd
parent fab4ce4b01
1 changed files with 2 additions and 0 deletions
--- a/.woodpecker/build-container.yml
+++ b/.woodpecker/build-container.yml
@ -13,6 +13,8 @@ steps:
      output: type=oci,dest=oci/${CI_REPO_NAME},tar=false
      repo: thegeeklab/${CI_REPO_NAME}
      cache_to: type=local,dest=oci/cache/${CI_REPO_NAME},mode=max
+      registry_config:
+        from_secret: DOCKER_REGISTRY_CONFIG_PULL

  - name: security-scan
    image: docker.io/aquasec/trivy