trivy

d06a1d28 · Clayton, Brandon Scott · 87e40d00 · d06a1d28
Commit d06a1d28 authored 1 year ago by Clayton, Brandon Scott
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -81,9 +81,6 @@ default:
  services:
    - alias: docker
      name: ${CI_REGISTRY}/devops/images/docker:20-dind
-  tags:
-    - chs-shared
-    - dind
  variables:
    DOCKER_DRIVER: overlay2
@@ -199,6 +196,9 @@ NPM Audit:
  stage: security
 Trivy Docker Scan:
+  cache:
+    paths:
+      - .trivy/
  extends:
    - .dind
  needs:
@@ -211,7 +211,7 @@ Trivy Docker Scan:
    - *production-env
  script:
    - |
-      trivy image \
+      trivy --cache-dir .trivy image \
        --exit-code 1 \
        --severity HIGH,CRITICAL \
        usgs/${CI_PROJECT_NAME}:${ENVIRONMENT}-latest;