From 94bfb20744d165bf222bf5c4f586d094200598c1 Mon Sep 17 00:00:00 2001
From: Nicholas Shavers <nshavers@contractor.usgs.gov>
Date: Wed, 20 Nov 2024 13:01:48 -0800
Subject: [PATCH] use trivy mirror fofr 0 rate limiting

---
 .gitlab-ci.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 846e857e..06f62814 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -204,8 +204,8 @@ Build Docker Image:
       --build-arg GIT_COMMIT_SHA=${CI_COMMIT_SHA}
       --tag "${LOCAL_IMAGE}"
       "."
-
     ## trivy scan before push
+    - export TRIVY_DB_REPOSITORY=mirror.gcr.io/aquasec/trivy-db #Trivy looks for this variable to determine which repository to use. Only one allowed until trivy >= 0.56
     # fail LOW,MEDIUM vulnerabilities that have a fix available
     - trivy image --exit-code 1 --ignore-unfixed --severity LOW,MEDIUM "${LOCAL_IMAGE}";
     # fail HIGH,CRITICAL vulnerabilities
-- 
GitLab