ci: Move Trivy checks after build

in order to scan built binaries too

Signed-off-by: Knut Ahlers <knut@ahlers.me>
This commit is contained in:
Knut Ahlers 2023-06-12 23:10:24 +02:00
parent 1720ebb665
commit d3e92c732f
Signed by: luzifer
GPG key ID: D91C3E91E4CAD6F5

View file

@ -54,9 +54,6 @@ jobs:
run: | run: |
go test -v ./... go test -v ./...
- name: Execute Trivy scan
run: make trivy
- name: Build release - name: Build release
run: make publish run: make publish
env: env:
@ -65,6 +62,9 @@ jobs:
NO_TESTS: 'true' NO_TESTS: 'true'
PACKAGES: '.' PACKAGES: '.'
- name: Execute Trivy scan
run: make trivy
- name: Extract changelog - name: Extract changelog
run: 'awk "/^#/ && ++c==2{exit}; /^#/f" "History.md" | tail -n +2 >release_changelog.md' run: 'awk "/^#/ && ++c==2{exit}; /^#/f" "History.md" | tail -n +2 >release_changelog.md'