Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

acucutamama #58

Open
wants to merge 9 commits into
base: main
Choose a base branch
from
Open

acucutamama #58

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
fb6c9ba
scan mysql
Jul 5, 2024
4ee25db
wip
Jul 5, 2024
74e6156
wip
Jul 5, 2024
a20fd5b
compose scan
Jul 5, 2024
48f4d43
compose scan
Jul 5, 2024
9b71679
compose scan
Jul 5, 2024
26b1625
user14 scan
Jul 5, 2024
20edbf2
user14 scan
Jul 5, 2024
e621e73
user14 compose up
Jul 5, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 4 additions & 4 deletions .cache/ans/single/compose.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
services:
nginx:
image: nginx:latest
container_name: nginx
container_name: razy-aginx
volumes:
- ./nginx.conf:/etc/nginx/nginx.conf:ro
ports:
Expand All @@ -21,7 +21,7 @@ services:

wordpress:
image: wordpress:latest
container_name: wordpress
container_name: razy-wordpress
environment:
WORDPRESS_DB_HOST: db
WORDPRESS_DB_USER: exampleuser
Expand All @@ -42,8 +42,8 @@ services:
restart: unless-stopped

db:
image: mysql:8
container_name: db
image: mysql:latest
container_name: razy-db
environment:
MYSQL_ROOT_PASSWORD: examplepass
MYSQL_DATABASE: exampledb
Expand Down
33 changes: 28 additions & 5 deletions .github/workflows/image-scan.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,13 +14,36 @@ jobs:
- name: Checkout code
uses: actions/checkout@v3

# https://github.com/aquasecurity/trivy-action?tab=readme-ov-file#inputs
- name: Run Trivy vulnerability scanner
## https://github.com/aquasecurity/trivy-action?tab=readme-ov-file#inputs
- name: Nginx
uses: aquasecurity/trivy-action@master
with:
image-ref: 'ubuntu:impish-20210711'
image-ref: 'nginx:latest'
format: 'table'
exit-code: '1'
exit-code: '0'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
severity: 'CRITICAL,HIGH'
- name: Wordpress
uses: aquasecurity/trivy-action@master
with:
image-ref: 'wordpress:latest'
format: 'table'
exit-code: '0'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
- name: MySQL
uses: aquasecurity/trivy-action@master
with:
image-ref: 'mysql:latest'
format: 'table'
exit-code: '0'
ignore-unfixed: true
vuln-type: 'os,library'
severity: 'CRITICAL,HIGH'
- name: Test
run: |
cd .cache/ans/single
docker compose up -d
shell: bash
Loading