0
0
mirror of https://github.com/thegeeklab/wp-gitea-release.git synced 2024-11-21 13:50:40 +00:00

ci: add read-only pull secret to security build

This commit is contained in:
Robert Kaussow 2024-11-13 23:50:53 +01:00
parent 77ff17772a
commit d9ae3ec66c
Signed by: xoxys
GPG Key ID: 4E692A2EAECC03C0

View File

@ -12,6 +12,8 @@ steps:
containerfile: Containerfile.multiarch containerfile: Containerfile.multiarch
output: type=oci,dest=oci/${CI_REPO_NAME},tar=false output: type=oci,dest=oci/${CI_REPO_NAME},tar=false
repo: ${CI_REPO} repo: ${CI_REPO}
registry_config:
from_secret: DOCKER_REGISTRY_CONFIG_PULL
- name: security-scan - name: security-scan
image: docker.io/aquasec/trivy image: docker.io/aquasec/trivy