From 47535aa562b708600da936bfb9a08d9a52dd7a3c Mon Sep 17 00:00:00 2001
From: ganeshmurthy <gmurthy@apache.org>
Date: Mon, 21 Oct 2024 14:06:31 -0400
Subject: [PATCH] Fixes #1642: Temporarily comment out Trivy scans

---
 .github/workflows/build.yaml | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index 08c72fec0..3f406dd7c 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -1010,18 +1010,18 @@ jobs:
 
       # Trivy and Grype are the scanners that GitLab integrates with (at the time of writing)
 
-      - name: Run Trivy security scan on the image
-        if: ${{ ! cancelled() }}
-        # https://aquasecurity.github.io/trivy/v0.43/getting-started/installation/#use-container-image
-        run: |
-          podman run --rm \
-            -v ${PODMAN_SOCK}:/var/run/docker.sock \
-            -v ${{github.workspace}}:${{github.workspace}} \
-            docker.io/aquasec/trivy:latest \
-              image \
-              --scanners vuln,secret --ignore-unfixed --exit-code=1 \
-              --secret-config=${{github.workspace}}/.github/trivy-secret.yaml \
-              ${{ env.ImageName }}
+#      - name: Run Trivy security scan on the image
+#        if: ${{ ! cancelled() }}
+#        # https://aquasecurity.github.io/trivy/v0.43/getting-started/installation/#use-container-image
+#        run: |
+#          podman run --rm \
+#            -v ${PODMAN_SOCK}:/var/run/docker.sock \
+#            -v ${{github.workspace}}:${{github.workspace}} \
+#            docker.io/aquasec/trivy:latest \
+#              image \
+#              --scanners vuln,secret --ignore-unfixed --exit-code=1 \
+#              --secret-config=${{github.workspace}}/.github/trivy-secret.yaml \
+#              ${{ env.ImageName }}
 
       - name: Run Grype security scan on the image
         if: ${{ ! cancelled() }}