From ff93932ba21edec9f7289109d1aee811543ca4ac Mon Sep 17 00:00:00 2001 From: Joe Previte Date: Mon, 24 May 2021 10:55:15 -0700 Subject: [PATCH] fix: temporarily disable trivy-scan-image --- .github/workflows/ci.yaml | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index cb210d86..6dd06c5f 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -434,7 +434,9 @@ jobs: trivy-scan-image: runs-on: ubuntu-20.04 needs: docker-amd64 - + # NOTE@jsjoeio: disabling due to a memory issue upstream + # See: https://github.com/github/codeql-action/issues/528 + if: 1 == 2 steps: - name: Checkout code uses: actions/checkout@v2 @@ -457,6 +459,9 @@ jobs: output: "trivy-image-results.sarif" severity: "HIGH,CRITICAL" + - name: Debug Trivy SARIF file + run: cat trivy-image-results.sarif && ls -l trivy-image-results.sarif + - name: Upload Trivy scan results to GitHub Security tab uses: github/codeql-action/upload-sarif@v1 with: