yujunjun/datahub
2
0
Fork 0
mirror of https://github.com/datahub-project/datahub.git synced 2025-12-10 09:35:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(ci): adjust trivy configuration for pyspark cache (#14692)

Browse Source
This commit is contained in:
david-leifker 2025-09-05 14:21:01 -05:00 committed by GitHub
parent fa4c866d0b
commit 8b194cdd28
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.github/workflows/docker-unified.yml vendored
View File

@ -337,6 +337,7 @@ jobs:
severity: "CRITICAL,HIGH"
ignore-unfixed: true
vuln-type: "os,library"
trivy-config: "./trivy.yaml"
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v3
with:

4
trivy.yaml Normal file
View File

@ -0,0 +1,4 @@
scan:
skip-dirs:
# Skip Python uv cache directories to avoid duplicate vulnerability reports in upstreams
- "/home/datahub/.cache/uv/**/pyspark/jars/**"