disable vuln scan for now

elabftw · Feb 15, 2025 · 4777b4d · 4777b4d
1 parent 67f5598
commit 4777b4d
Showing 1 changed file with 11 additions and 11 deletions.
diff --git a/.github/workflows/build_hypernext.yaml b/.github/workflows/build_hypernext.yaml
@@ -82,17 +82,17 @@ jobs:
               elabftw/elabimg:${{ github.ref_name }}
 
       # VULN SCAN
-      - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
-        with:
-          image-ref: elabftw/elabimg:${{ github.ref_name }}
-          format: 'table'
-          exit-code: '1'
-          ignore-unfixed: true
-          vuln-type: 'os,library'
-          # use only the vuln scanner to avoid OOM kill with secrets scanning
-          scanners: 'vuln'
-          severity: 'CRITICAL,HIGH'
+      #- name: Run Trivy vulnerability scanner
+      #  uses: aquasecurity/trivy-action@master
+      #  with:
+      #    image-ref: elabftw/elabimg:${{ github.ref_name }}
+      #    format: 'table'
+      #    exit-code: '1'
+      #    ignore-unfixed: true
+      #    vuln-type: 'os,library'
+      #    # use only the vuln scanner to avoid OOM kill with secrets scanning
+      #    #not working: scanners: 'vuln'
+      #    severity: 'CRITICAL,HIGH'
 
       # SBOM
       - name: Run Trivy in GitHub SBOM mode and submit results to Dependency Graph