Update vulnerability scan steps for Wekan Docker images in CI workflow

2025-12-29 13:48:49 +01:00 · 2025-09-27 13:36:49 +03:00 · 2025-09-27 13:36:49 +03:00 · 1d31e5d32d
commit 1d31e5d32d
parent 0dd5692b9a
1 changed files with 10 additions and 1 deletions
--- a/.github/workflows/e2e-testing.yml
+++ b/.github/workflows/e2e-testing.yml
@ -34,7 +34,7 @@ jobs:
          # Save the tag for later steps
          echo "WEKAN_IMAGE_TAG=$TAG" >> $GITHUB_ENV

-      - name: Scan Wekan Docker image for vulnerabilities
+      - name: Scan Wekan Docker image for vulnerabilities(Wekan)
        uses: aquasecurity/trivy-action@master
        with:
          image-ref: '${{ secrets.DOCKERHUB_USERNAME }}/wekan:${{ env.WEKAN_IMAGE_TAG }}'
@ -43,6 +43,15 @@ jobs:
          ignore-unfixed: true
          exit-code: 0

+      - name: Scan wekan-selenium Docker image for vulnerabilities
+        uses: aquasecurity/trivy-action@master
+        with:
+          image-ref: 'omriza5/wekan-selenium:1.0.0'
+          format: 'table'
+          severity: 'HIGH,CRITICAL'
+          ignore-unfixed: true
+          exit-code: 0
+
      - name: Create .env file
        run: |
          echo "WEKAN_IMAGE=omriza5/wekan:${WEKAN_IMAGE_TAG}" >> .env