feat: Add support for --ignore-unfixed flag (#10 )

Resolves: #9
docs: Update README with 0.0.6 release (#8 )
2020-06-22 19:40:11 +02:00 · 2020-06-18 10:50:30 +02:00 · 2020-06-03 09:33:30 +02:00
3 changed files with 17 additions and 9 deletions
@@ -6,6 +6,8 @@
 [![GitHub Marketplace][marketplace-img]][marketplace]
 [![License][license-img]][license]

+![](docs/images/trivy-action.png)
+
 ## Table of Contents

 - [Usage](#usage)
@@ -39,11 +41,12 @@ jobs:
        run: |
          docker build -t docker.io/my-organization/my-app:${{ github.sha }} .
      - name: Run vulnerability scanner
-        uses: aquasecurity/trivy-action@0.0.5
+        uses: aquasecurity/trivy-action@0.0.7
        with:
          image-ref: 'docker.io/my-organization/my-app:${{ github.sha }}'
          format: 'table'
          exit-code: '1'
+          ignore-unfixed: true
          severity: 'CRITICAL,HIGH'
 ```

@@ -53,13 +56,13 @@ jobs:

 Following inputs can be used as `step.with` keys:

-| Name        | Type   | Default                            | Description                                   |
-|-------------|--------|------------------------------------|-----------------------------------------------|
-| `image-ref` | String |                                    | Image reference, e.g. `alpine:3.10.2`         |
-| `format`    | String | `table`                            | Output format (`table`, `json`)               |
-| `exit-code` | String | `0`                                | exit code when vulnerabilities were found     |
-| `severity`  | String | `UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL` | severities of vulnerabilities to be displayed |
-
+| Name             | Type    | Default                            | Description                                   |
+|------------------|---------|------------------------------------|-----------------------------------------------|
+| `image-ref`      | String  |                                    | Image reference, e.g. `alpine:3.10.2`         |
+| `format`         | String  | `table`                            | Output format (`table`, `json`)               |
+| `exit-code`      | String  | `0`                                | Exit code when vulnerabilities were found     |
+| `ignore-unfixed` | Boolean | false                              | Ignore unpatched/unfixed vulnerabilities      |
+| `severity`       | String  | `UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL` | Severities of vulnerabilities to be displayed |

 [release]: https://github.com/aquasecurity/trivy-action/releases/latest
 [release-img]: https://img.shields.io/github/release/aquasecurity/trivy-action.svg?logo=github
@@ -1,5 +1,5 @@
 name: 'Trivy Vulnerability Scanner'
-description: 'Scan container image for vulnerabilities with Trivy'
+description: 'Scans container images for vulnerabilities with Trivy'
 author: 'Aqua Security'
 inputs:
  image-ref:
@@ -9,6 +9,10 @@ inputs:
    description: 'exit code when vulnerabilities were found'
    required: false
    default: '0'
+  ignore-unfixed:
+    description: 'ignore unfixed vulnerabilities'
+    required: false
+    default: false
  severity:
    description: 'severities of vulnerabilities to be displayed'
    required: false
@@ -24,5 +28,6 @@ runs:
    - 'image'
    - '--format=${{ inputs.format }}'
    - '--exit-code=${{ inputs.exit-code }}'
+    - '--ignore-unfixed=${{ inputs.ignore-unfixed }}'
    - '--severity=${{ inputs.severity }}'
    - '${{ inputs.image-ref }}'
Author	SHA1	Message	Date
Zois Pagoulatos	f498173417	feat: Add support for `--ignore-unfixed` flag (#10 ) Resolves: #9	2020-06-22 19:40:11 +02:00
Zois Pagoulatos	c88ebc55b9	docs: Update README with 0.0.6 release (#8 ) Actions using `0.0.5` are failing with `(Line: 26, Col: 10): Unrecognized named-value: 'inputs'. Located at position 1 within expression: inputs.version` Resolves: #7	2020-06-18 10:50:30 +02:00
Daniel Pacak	1eb53c0425	docs: Update README.md Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>	2020-06-03 09:33:30 +02:00