chore: Update trivy version to 0.26.0 (#102 )

* chore: Update trivy version to 0.25.3 * feat: trivy fs - securityCheck test * chore: update trivy 0.26.0 Co-authored-by: carolina valencia <krol3@users.noreply.github.com>
2022-04-18 08:40:37 -07:00
4 changed files with 10 additions and 3 deletions
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -1,7 +1,7 @@
 name: "build"
 on: [push, pull_request]
 env:
-  TRIVY_VERSION: 0.25.0
+  TRIVY_VERSION: 0.26.0
 jobs:
  build:
    name: build
--- a/2
+++ b/2
@@ -1,4 +1,4 @@
-FROM aquasec/trivy:0.25.0
+FROM aquasec/trivy:0.26.0
 COPY entrypoint.sh /
 RUN apk --no-cache add bash
 RUN chmod +x /entrypoint.sh
--- a/test/data/image-sarif.test
+++ b/test/data/image-sarif.test
@@ -442,7 +442,7 @@
              }
            }
          ],
-          "version": "0.25.0"
+          "version": "0.26.0"
        }
      },
      "results": [
--- a/test/test.bats
+++ b/test/test.bats
@@ -35,6 +35,13 @@
  [ "$result" == '' ]
 }

+@test "trivy fs with securityChecks option" {
+  # trivy fs -f json --security-checks=vuln,config -o fs.test .
+  ./entrypoint.sh '-a fs' '-j .' '-b json' '-s vuln,config' '-h fs-scheck.test'
+  result="$(diff ./test/data/fs.test fs.test)"
+  [ "$result" == '' ]
+}
+
@test "trivy repo" {
  # trivy repo -f json -o repo.test --severity CRITICAL https://github.com/aquasecurity/trivy-action/
  ./entrypoint.sh '-b json' '-h repo.test' '-g CRITICAL' '-a repo' '-j https://github.com/aquasecurity/trivy-action/'