Hardened Malloc 2025040400

try with github-pat variable to get the action working
setup custom token for trivy
2025-04-30 15:55:32 +02:00 · 2025-02-07 16:14:44 +01:00 · 2025-02-05 20:59:40 +01:00 · 2025-02-05 19:52:02 +01:00 · 2025-02-05 19:22:12 +01:00 · 2025-02-05 19:19:51 +01:00
3 changed files with 15 additions and 9 deletions
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -4,7 +4,7 @@ on:
  workflow_dispatch:
  push:
    branches:
-      - main
+      - development
    # Ignore Markdown files
    paths-ignore:
      - '**.md'
@@ -24,7 +24,7 @@ jobs:
      contents: read
      packages: write
    timeout-minutes: 10
-    runs-on: ubuntu-24.04
+    runs-on: ubuntu-latest

    steps:
      - name: Checkout code
@@ -33,6 +33,7 @@ jobs:
      - name: Extract version for tags
        run: |
          echo "FULL_VERSION=$(grep -oP '(?<=VERSION=).*' Dockerfile)" >> $GITHUB_ENV
+          echo ${{ github.repository_owner }}

      # Add support for more platforms with QEMU
      - name: Set up QEMU
@@ -47,7 +48,7 @@ jobs:
        with:
          registry: ${{ env.REGISTRY }}
          username: ${{ github.repository_owner }}
-          password: ${{ secrets.GITHUB_TOKEN }}
+          password: ${{ secrets.ACTIONS_TOKEN }}

      - name: Set Docker metadata
        id: meta
@@ -74,10 +75,14 @@ jobs:
    permissions:
      security-events: write
    timeout-minutes: 10
-    runs-on: ubuntu-24.04
+    runs-on: ubuntu-latest
    steps:
+      - name: debug
+        run: |
+          echo ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.TAG }}
+
      - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.29.0
        with:
          image-ref: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.TAG }}
          format: template
@@ -85,6 +90,8 @@ jobs:
          output: trivy-results.sarif
          severity: UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL
          vuln-type: os,library
+          cache: 'false'
+          github-pat: ${{ secrets.ACTIONS_TOKEN }}

      - name: Upload Trivy scan results to GitHub Security tab
        uses: github/codeql-action/upload-sarif@v3
@@ -98,7 +105,7 @@ jobs:
    permissions:
      security-events: write
    timeout-minutes: 10
-    runs-on: ubuntu-24.04
+    runs-on: ubuntu-latest
    steps:
      - name: Run Grype vulnerability scanner
        uses: anchore/scan-action@v6
--- a/3
+++ b/3
@@ -1,5 +1,4 @@
-ARG VERSION=2024101200
-
+ARG VERSION=2025040400
 FROM alpine:latest

 LABEL maintainer="Lukas Raub titanz@pm.me"
--- a/README.md
+++ b/README.md
@@ -1,6 +1,6 @@
 # hardened_malloc

-![Build, scan & push](https://github.com/titanz-containers/hardened_malloc/actions/workflows/build.yml/badge.svg)
+![Build, scan & push](https://git.conorz.at/titanz-containers/hardened_malloc/actions/workflows/build.yml/badge.svg)

 ### Features & usage
 hardened_malloc is built by this container and placed in `/install`
Author	SHA1	Message	Date
titanz	c0b49046a0	Hardened Malloc 2025040400 Some checks failed Build / Build & push new image (push) Successful in 11m28s Details Build / Scan current image with Trivy (push) Failing after 49s Details Build / Scan current image with Grype (push) Failing after 1m27s Details	2025-04-30 15:55:32 +02:00
titanz	89b49f5d7b	try with github-pat variable to get the action working Some checks failed Build / Build & push new image (push) Successful in 11m23s Details Build / Scan current image with Trivy (push) Failing after 51s Details Build / Scan current image with Grype (push) Failing after 1m12s Details	2025-02-07 16:14:44 +01:00
titanz	50e6103818	setup custom token for trivy Some checks failed Build / Build & push new image (push) Successful in 11m20s Details Build / Scan current image with Trivy (push) Failing after 39s Details Build / Scan current image with Grype (push) Failing after 52s Details	2025-02-05 20:59:40 +01:00
titanz	18e87eb663	disable cache Some checks failed Build / Build & push new image (push) Successful in 11m25s Details Build / Scan current image with Trivy (push) Failing after 41s Details Build / Scan current image with Grype (push) Failing after 51s Details	2025-02-05 19:52:02 +01:00
titanz	eb26d5cffd	Hardened Malloc 2025020200	2025-02-05 19:22:12 +01:00
titanz	50f4f9f153	fix badge	2025-02-05 19:19:51 +01:00
titanz	4d623685b6	fixed debug Some checks failed Build / Build & push new image (push) Successful in 11m25s Details Build / Scan current image with Trivy (push) Failing after 5m23s Details Build / Scan current image with Grype (push) Failing after 53s Details	2025-02-05 18:54:50 +01:00
titanz	b6995e1bb6	wrong syntax for debug	2025-02-05 18:47:00 +01:00
titanz	1d85b14fcf	fixed debug	2025-02-05 18:06:57 +01:00
titanz	700af4b384	debug trivy Some checks failed Build / Build & push new image (push) Successful in 11m33s Details Build / Scan current image with Grype (push) Failing after 49s Details Build / Scan current image with Trivy (push) Failing after 1s Details	2025-02-05 17:23:16 +01:00
titanz	7076cd58ee	trivy: try to use version instead of master Some checks failed Build / Build & push new image (push) Successful in 11m33s Details Build / Scan current image with Trivy (push) Failing after 5m33s Details Build / Scan current image with Grype (push) Failing after 58s Details	2025-01-29 13:55:27 +01:00
titanz	eafc79d9e3	removed debug Some checks failed Build / Build & push new image (push) Successful in 11m31s Details Build / Scan current image with Trivy (push) Failing after 5m29s Details Build / Scan current image with Grype (push) Failing after 1m12s Details	2025-01-28 21:55:04 +01:00
titanz	f44fc0651f	added organization token Some checks failed Build / Build & push new image (push) Failing after 12s Details Build / Scan current image with Trivy (push) Has been skipped Details Build / Scan current image with Grype (push) Has been skipped Details	2025-01-28 21:51:09 +01:00
titanz	96e6c098ee	debug login Some checks failed Build / Build & push new image (push) Failing after 15s Details Build / Scan current image with Trivy (push) Has been skipped Details Build / Scan current image with Grype (push) Has been skipped Details	2025-01-28 20:50:59 +01:00
titanz	5da4f80d2f	debug login Some checks failed Build / Build & push new image (push) Failing after 12s Details Build / Scan current image with Trivy (push) Has been skipped Details Build / Scan current image with Grype (push) Has been skipped Details	2025-01-28 20:42:43 +01:00
titanz	d62e62c8d1	afaik GITEA_TOKEN should work Some checks failed Build / Build & push new image (push) Failing after 9m45s Details Build / Scan current image with Trivy (push) Has been skipped Details Build / Scan current image with Grype (push) Has been skipped Details	2025-01-28 19:00:44 +01:00
titanz	98868d96de	forgot to add token Some checks failed Build / Scan current image with Trivy (push) Has been cancelled Details Build / Scan current image with Grype (push) Has been cancelled Details Build / Build & push new image (push) Has been cancelled Details	2025-01-28 18:54:52 +01:00
titanz	5f11a12cd4	debug action Some checks failed Build / Scan current image with Trivy (push) Has been cancelled Details Build / Scan current image with Grype (push) Has been cancelled Details Build / Build & push new image (push) Has been cancelled Details	2025-01-28 18:30:59 +01:00
titanz	50dc1c2cc8	changed runner config Some checks failed Build / Scan current image with Trivy (push) Has been skipped Details Build / Scan current image with Grype (push) Has been skipped Details Build / Build & push new image (push) Failing after 57s Details	2025-01-25 19:28:27 +01:00
titanz	78c0bcef61	fixed action, changed from ubuntu-24.01 to latest Some checks failed Build / Build & push new image (push) Failing after 2m15s Details Build / Scan current image with Trivy (push) Has been skipped Details Build / Scan current image with Grype (push) Has been skipped Details	2025-01-25 19:11:37 +01:00
titanz	103b896203	fixed action	2025-01-25 18:29:04 +01:00