nayuta
commented
8 months ago @shmokmt could you tell me how do you think about this and the PR?
Closed nayuta closed 7 months ago
nayuta
commented
8 months ago @shmokmt could you tell me how do you think about this and the PR?
nayuta
commented
7 months ago @shogo82148 (I'm sorry I asked a different person for the comment above...) Could you comment if you have time?
Currently,
script.shdownloads the trivy archive to the working directory: https://github.com/reviewdog/action-trivy/blob/main/script.sh#L11However, it would fail when the working directory is writable, and it pollutes the working directory.
So, we need to use a temporary directory for downloading the trivy archive.