From 266aafde280920e8e32b60ec2303270563bea12b Mon Sep 17 00:00:00 2001 From: Aaron Prindle Date: Mon, 26 Feb 2024 18:01:27 -0800 Subject: [PATCH] refactor: remove artifact upload from nightly-vulnerabiliy-scan.yml (#3029) --- .github/workflows/images.yaml | 4 +++- .github/workflows/nightly-vulnerability-scan.yml | 7 ------- 2 files changed, 3 insertions(+), 8 deletions(-) diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml index 3554f1987c..d42cc5cdb6 100644 --- a/.github/workflows/images.yaml +++ b/.github/workflows/images.yaml @@ -31,6 +31,8 @@ jobs: - warmer include: + + - image: executor target: kaniko-executor platforms: linux/amd64,linux/arm64,linux/s390x,linux/ppc64le @@ -64,7 +66,7 @@ jobs: # Setup auth if not a PR. - if: github.event_name != 'pull_request' - uses: google-github-actions/auth@55bd3a7c6e2ae7cf1877fd1ccb9d54c0503c457c # v2.1.2 + uses: google-github-actions/auth@a6e2e39c0a0331da29f7fd2c2a20a427e8d3ad1f # v2.1.1 with: credentials_json: '${{ secrets.GCR_DEVOPS_SERVICE_ACCOUNT_KEY }}' export_environment_variables: true diff --git a/.github/workflows/nightly-vulnerability-scan.yml b/.github/workflows/nightly-vulnerability-scan.yml index 3dabcdaba5..e5c3749d4f 100644 --- a/.github/workflows/nightly-vulnerability-scan.yml +++ b/.github/workflows/nightly-vulnerability-scan.yml @@ -36,12 +36,5 @@ jobs: if grep -q 'No vulnerabilities found' grype-output.txt; then echo "No vulnerabilities found." else - # Create a GitHub issue using GitHub CLI or another method gh issue create --title "Vulnerabilities Found in Nightly Scan" --body "Vulnerabilities found in the latest image scan. Please check the attached report." --file grype-output.txt fi - - - name: Upload scan result as artifact (optional) - uses: actions/upload-artifact@v2 - with: - name: grype-scan-report - path: grype-output.txt