From a31c7d8535c9b2ad81b4ce29fc0815fccb45f4e8 Mon Sep 17 00:00:00 2001
From: Sonny Bakker <sonny871@hotmail.com>
Date: Fri, 4 Oct 2024 12:18:16 +0200
Subject: [PATCH] Disable trivy image scan

see https://github.com/maykinmedia/objects-api/issues/463
---
 .github/workflows/ci.yml | 23 -----------------------
 1 file changed, 23 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 9f8a0ef0..cebe054f 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -131,29 +131,6 @@ jobs:
           path: image.tar
           retention-days: 1
 
-  image_scan:
-    runs-on: ubuntu-latest
-    name: Scan docker image
-    needs:
-      - docker
-
-    steps:
-      - name: Download built image
-        uses: actions/download-artifact@v3
-        with:
-          name: docker-image
-      - name: Scan image with Trivy
-        uses: aquasecurity/trivy-action@master
-        with:
-          input: /github/workspace/image.tar  # from download-artifact
-          format: 'sarif'
-          output: 'trivy-results-docker.sarif'
-          ignore-unfixed: true
-      - name: Upload results to GH Security tab
-        uses: github/codeql-action/upload-sarif@v3
-        with:
-          sarif_file: 'trivy-results-docker.sarif'
-
   publish:
     needs:
       - tests