1
0
mirror of https://github.com/woodpecker-ci/woodpecker.git synced 2024-12-06 08:16:19 +02:00
woodpecker/.woodpecker/securityscan.yml

30 lines
589 B
YAML

when:
- event: [ pull_request, cron ]
- event: push
branch: [ main, release/* ]
variables:
- &trivy_image aquasec/trivy:latest
- &trivy_plugin codeberg.org/woodpecker-plugins/trivy:latest
steps:
check backend:
group: check
image: *trivy_plugin
settings:
skip-dirs: web/,docs/
check docs:
group: check
image: *trivy_plugin
settings:
skip-dirs: node_modules/,plugins/woodpecker-plugins/node_modules/
dir: docs/
check web:
group: check
image: *trivy_plugin
settings:
skip-dirs: node_modules/
dir: web/