From 50e61038180fbedcbe859a08ab12f9ac075d3b29 Mon Sep 17 00:00:00 2001
From: titanz <titanz@pm.me>
Date: Wed, 5 Feb 2025 20:59:40 +0100
Subject: [PATCH] setup custom token for trivy

---
 .gitea/workflows/build.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.gitea/workflows/build.yml b/.gitea/workflows/build.yml
index 669f20b..d74367c 100644
--- a/.gitea/workflows/build.yml
+++ b/.gitea/workflows/build.yml
@@ -91,6 +91,7 @@ jobs:
           severity: UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL
           vuln-type: os,library
           cache: 'false'
+          token-setup-trivy: ${{ secrets.ACTIONS_TOKEN }}
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3