ci: update license scan (#385)

* Update license_scan.yml * Delete .github/license_scan_config.yml * Update license_scan.yml
sovity · Jan 26, 2024 · ae069bf · ae069bf
1 parent e2b4996
commit ae069bf
Show file tree

Hide file tree

Showing 2 changed files with 21 additions and 18 deletions.
diff --git a/.github/license_scan_config.yml b/.github/license_scan_config.yml
diff --git a/.github/workflows/license_scan.yml b/.github/workflows/license_scan.yml
@@ -1,17 +1,16 @@
 name: Trivy License Scan
 
 on:
-  pull_request:
-    branches: ["main"]
+  push:
 
 jobs:
-  license_scan:
-    name: license_scan
+  license_scan1:
+    name: License scan (rootfs)
     runs-on: ubuntu-latest
     timeout-minutes: 30
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v3
 
       - name: Run license scanner
         uses: aquasecurity/trivy-action@master
@@ -21,3 +20,20 @@ jobs:
           scanners: "license"
           severity: "CRITICAL,HIGH"
           exit-code: 1
+  license_scan2:
+    name: License scan (repo)
+    runs-on: ubuntu-latest
+    timeout-minutes: 30
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+      - name: npm install (client-ts)
+        run: cd extensions/broker-server-api/client-ts && npm install
+      - name: Run license scanner
+        uses: aquasecurity/trivy-action@master
+        with:
+          scan-type: "repo"
+          scan-ref: "."
+          scanners: "license"
+          severity: "CRITICAL,HIGH"
+          exit-code: 1