chore: Update trivy version to 0.26.0 (#102)

* chore: Update trivy version to 0.25.3 * feat: trivy fs - securityCheck test * chore: update trivy 0.26.0 Co-authored-by: carolina valencia <[email protected]>
aquasecurity · Apr 18, 2022 · 2b30463 · 2b30463
1 parent d7a5181
commit 2b30463
Show file tree

Hide file tree

Showing 4 changed files with 10 additions and 3 deletions.
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
@@ -1,7 +1,7 @@
 name: "build"
 on: [push, pull_request]
 env:
-  TRIVY_VERSION: 0.25.0
+  TRIVY_VERSION: 0.26.0
 jobs:
   build:
     name: build

diff --git a/Dockerfile b/Dockerfile
@@ -1,4 +1,4 @@
-FROM aquasec/trivy:0.25.0
+FROM aquasec/trivy:0.26.0
 COPY entrypoint.sh /
 RUN apk --no-cache add bash
 RUN chmod +x /entrypoint.sh

diff --git a/test/data/image-sarif.test b/test/data/image-sarif.test
@@ -442,7 +442,7 @@
               }
             }
           ],
-          "version": "0.25.0"
+          "version": "0.26.0"
         }
       },
       "results": [

diff --git a/test/test.bats b/test/test.bats
@@ -35,6 +35,13 @@
   [ "$result" == '' ]
 }
 
+@test "trivy fs with securityChecks option" {
+  # trivy fs -f json --security-checks=vuln,config -o fs.test .
+  ./entrypoint.sh '-a fs' '-j .' '-b json' '-s vuln,config' '-h fs-scheck.test'
+  result="$(diff ./test/data/fs.test fs.test)"
+  [ "$result" == '' ]
+}
+
 @test "trivy repo" {
   # trivy repo -f json -o repo.test --severity CRITICAL https://github.com/aquasecurity/trivy-action/
   ./entrypoint.sh '-b json' '-h repo.test' '-g CRITICAL' '-a repo' '-j https://github.com/aquasecurity/trivy-action/'
-Original file line number
+Diff line change
@@ Expand Up / @@ -442,7 +442,7 @@ @@
                   }
                 }
               ],
-              "version": "0.25.0"
+              "version": "0.26.0"
             }
           },
           "results": [
@@ Expand Down @@