From 383608a92a702e092556681c091f9136063fb594 Mon Sep 17 00:00:00 2001
From: David Donchez <david.donchez@enix.fr>
Date: Thu, 31 Oct 2024 16:00:01 +0100
Subject: [PATCH] ci: customize TRIVY_DB_REPOSITORY due to rate-limits on
 github

---
 .github/workflows/tests.yaml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/.github/workflows/tests.yaml b/.github/workflows/tests.yaml
index 1c89003c..a3bc164d 100644
--- a/.github/workflows/tests.yaml
+++ b/.github/workflows/tests.yaml
@@ -17,6 +17,7 @@ jobs:
       HARBOR_REPO: "kube-image-keeper/kube-image-keeper"
       GHCR_IMAGE: "ghcr.io/enix/kube-image-keeper"
       QUAY_IMAGE: "quay.io/enix/kube-image-keeper"
+      TRIVY_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-db:2"
     steps:
       - name: Checkout Repository
         uses: actions/checkout@v4
@@ -29,7 +30,6 @@ jobs:
 
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@0.28.0
-        continue-on-error: true
         with:
           scan-type: 'fs'
           ignore-unfixed: true
@@ -38,7 +38,6 @@ jobs:
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3
-        continue-on-error: true
         with:
           sarif_file: 'trivy-results.sarif'