ci: remove Trivy vulnerability scanning from CI workflow

- Remove Trivy vulnerability scanning and upload of scan results to GitHub Security tab from the workflow Signed-off-by: appleboy <appleboy.tw@gmail.com>
2026-02-05 09:10:09 +08:00 · 2025-11-28 22:10:49 +08:00
parent f5af77d622
commit 9d94a36c84
1 changed files with 0 additions and 15 deletions
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@@ -75,21 +75,6 @@ jobs:
          load: true
          tags: drone-ssh:scan

-      - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
-        with:
-          image-ref: "drone-ssh:scan"
-          format: "sarif"
-          output: "trivy-results.sarif"
-          severity: "CRITICAL,HIGH"
-          exit-code: "1"
-
-      - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v3
-        if: always()
-        with:
-          sarif_file: "trivy-results.sarif"
-
      - name: Build and push
        if: success()
        uses: docker/build-push-action@v6