Update main.yml

2024-11-22 07:10:09 +01:00 · 2024-08-24 02:04:46 -05:00 · 2024-08-24 02:04:46 -05:00 · 53c9ca10a7
commit 53c9ca10a7
parent 75fbdac42e
1 changed files with 14 additions and 21 deletions
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@ -17,34 +17,27 @@ jobs:
      - name: Checkout repository
        uses: actions/checkout@v3

+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v2
+
      - name: Log in to Docker Hub
        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}

-      - name: Build Docker image
+      - name: Build multiarch Docker image
        id: build-image
        run: |
-          docker build -t my-app-image:latest .
+          docker buildx create --use
+          docker buildx build --platform linux/amd64,linux/arm64,linux/arm/v7 -t wg-dashboard:latest --push .

-      - name: Install Docker Scout
-        run: |
-          curl -sSfL https://raw.githubusercontent.com/docker/scout-cli/main/install.sh | sh -s --
-
-      - name: Analyze Docker image with Docker Scout
-        id: analyze-image
-        run: |
-          # Get the current date in YYYY-MM-DD format
-          DATE=$(date +'%Y-%m-%d')
-          OUTPUT_FILE=".github/workflows/cve-report-$DATE.json"
-          
-          docker scout cves my-app-image:latest > $OUTPUT_FILE
-          echo "CVE report saved to $OUTPUT_FILE"
-          cat $OUTPUT_FILE
-
-      - name: Upload Scout results
-        uses: actions/upload-artifact@v3
+      - name: Docker Scout
+        id: docker-scout
+        uses: docker/scout-action@v1
        with:
-          name: scout-results
-          path: .github/workflows/cve-report-*.json
+          command: scan
+          image: wg-dashboard:latest
+          ignore-unchanged: true
+          only-severities: critical,high
+          github-token: ${{ secrets.GITHUB_TOKEN }}