diff --git a/.github/workflows/cve-scan.yaml b/.github/workflows/cve-scan.yaml index 2f8643bff..ea1fe8df7 100644 --- a/.github/workflows/cve-scan.yaml +++ b/.github/workflows/cve-scan.yaml @@ -49,15 +49,15 @@ jobs: uses: github/codeql-action/upload-sarif@v2 with: sarif_file: ${{ steps.grype-scan.outputs.sarif }} -# - name: Kubescape scanner -# uses: kubescape/github-action@main -# id: kubescape -# with: -# image: oryd/keto:${{ env.SHA_SHORT }} -# verbose: true -# format: pretty-printer -# # can't whitelist CVE yet: https://github.com/kubescape/kubescape/pull/1568 -# severityThreshold: critical + # - name: Kubescape scanner + # uses: kubescape/github-action@main + # id: kubescape + # with: + # image: oryd/keto:${{ env.SHA_SHORT }} + # verbose: true + # format: pretty-printer + # # can't whitelist CVE yet: https://github.com/kubescape/kubescape/pull/1568 + # severityThreshold: critical - name: Trivy Scanner uses: aquasecurity/trivy-action@master if: ${{ always() }}