GitHub issues will be created w.r.t. each revision of an image that contains CVEs found in the vulnerability scanning workflows triggered with continuous testing workflow. In the report, all the affected tags associated with the revision will be included in the report.
When vulnerabilities are found for the images tested in the Image workflow triggered by a push, a pull request or a workflow dispatch event, the vulnerability report will be dumped to a summary instead of creating an issue at the image repo.
This shall fix the issue that an issue will be accidentally closed when the different risks in a track of an image are tagged to different revisions, and only some of the revisions have found CVEs.
Ping the @canonical/rocks team.
Description
Imageworkflow triggered by a push, a pull request or a workflow dispatch event, the vulnerability report will be dumped to a summary instead of creating an issue at the image repo.Tests