From 61c5d5e8d57b3f6544d282b9d515fa8803e98592 Mon Sep 17 00:00:00 2001
From: Juan Antonio Osorio <ozz@stacklok.com>
Date: Mon, 13 Jan 2025 14:53:50 +0200
Subject: [PATCH] Add `skip-dirs` configuration for trivy

This way it will not check for our test data.

Signed-off-by: Juan Antonio Osorio <ozz@stacklok.com>
---
 .github/workflows/trivy.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
index d347b39..57f5e5b 100644
--- a/.github/workflows/trivy.yml
+++ b/.github/workflows/trivy.yml
@@ -18,6 +18,7 @@ jobs:
           exit-code: 1
           ignore-unfixed: true
           severity: 'CRITICAL'
+          skip-dirs: "./rule-types,./profiles,./data-sources"
         env:
           TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db
           TRIVY_USERNAME: ${{ github.actor }}