Allow for replacing FROM image in locked down environments

aquasecurity / trivy-action

Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities

Apache License 2.0

729 stars 216 forks source link

Allow for replacing FROM image in locked down environments #335

Open viper-cool79 opened 2 months ago

viper-cool79 commented 2 months ago

See #333 for background

The purpose is to do a simple replacement of the word placeholder in the Dockerfile. I have read-through the documentation for the github actions.yaml but it seems that there is no easy way to add a --build-args.

The logic is then to run a preparatory shell script to alter the Dockerfile (can most likely be done in a more fashionable manner) and this is here done via sed.

CLAassistant commented 2 months ago

All committers have signed the CLA.