Skip to content

Commit 56e8e07

Browse files
Log *what* components trigger a grype scan (#17905) (#17909)
This commit updates the grype action to log what components it is scanning (including any that are critical which will cause the action to fail). Previously the default sarif file was generated and nothing was logged. Without this commit it is impossible to tell from a failed action *what* is causing the failure. (cherry picked from commit 6b8d090) Co-authored-by: Cas Donoghue <[email protected]>
1 parent 5ff58a1 commit 56e8e07

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

.github/workflows/critical_vulnerability_scan.yml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -22,3 +22,4 @@ jobs:
2222
path: "./scan"
2323
fail-build: true
2424
severity-cutoff: critical
25+
output-format: table

0 commit comments

Comments
 (0)