ci: Move Trivy checks after build
in order to scan built binaries too Signed-off-by: Knut Ahlers <knut@ahlers.me>
This commit is contained in:
parent
1720ebb665
commit
d3e92c732f
1 changed files with 3 additions and 3 deletions
6
.github/workflows/test-and-build.yml
vendored
6
.github/workflows/test-and-build.yml
vendored
|
@ -54,9 +54,6 @@ jobs:
|
||||||
run: |
|
run: |
|
||||||
go test -v ./...
|
go test -v ./...
|
||||||
|
|
||||||
- name: Execute Trivy scan
|
|
||||||
run: make trivy
|
|
||||||
|
|
||||||
- name: Build release
|
- name: Build release
|
||||||
run: make publish
|
run: make publish
|
||||||
env:
|
env:
|
||||||
|
@ -65,6 +62,9 @@ jobs:
|
||||||
NO_TESTS: 'true'
|
NO_TESTS: 'true'
|
||||||
PACKAGES: '.'
|
PACKAGES: '.'
|
||||||
|
|
||||||
|
- name: Execute Trivy scan
|
||||||
|
run: make trivy
|
||||||
|
|
||||||
- name: Extract changelog
|
- name: Extract changelog
|
||||||
run: 'awk "/^#/ && ++c==2{exit}; /^#/f" "History.md" | tail -n +2 >release_changelog.md'
|
run: 'awk "/^#/ && ++c==2{exit}; /^#/f" "History.md" | tail -n +2 >release_changelog.md'
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue