taiars/nora
1
0
Fork 0
mirror of https://github.com/getnora-io/nora.git synced 2026-04-12 09:10:32 +00:00
Code Issues Packages Projects Releases Wiki Activity

ci: add dependabot, pin trivy-action@0.30.0, release no longer waits on scan

Browse Source
This commit is contained in:
devitway
2026-02-24 10:48:06 +00:00
parent 761e08f168
commit 5f385dce45
3 changed files with 19 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/ci.yml vendored
View File

@@ -72,7 +72,7 @@ jobs:
# ── CVE scan of source tree and Cargo.lock ──────────────────────────────
- name: Trivy — filesystem scan (Cargo.lock + source)
if: always()
uses: aquasecurity/trivy-action@master
uses: aquasecurity/trivy-action@0.30.0
with:
scan-type: fs
scan-ref: .