docker-claude

playground/docker-claude

Fork 0

History

docker-claude 71494a59b3 Some checks failed Build images / check-docker (push) Successful in 1s Details Build images / scan (push) Failing after 1m42s Details Build images / build-and-push (push) Has been skipped Details ci(scan): add Grype scanning alongside Trivy; fix --vuln-type flag Add anchore/grype:v0.88.0 as a second vulnerability scanner in the scan job. Both images are scanned with Grype after Trivy — using --fail-on high --only-fixed to match Trivy's HIGH/CRITICAL + ignore-unfixed gate. Having two independent scanners catches CVEs that may be missing from either database. Also fix a typo in the Trivy claude scan step: --package-type is not a valid Trivy flag; corrected to --vuln-type (matching the proxy step). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-20 22:45:48 +02:00
..
docker-build.yml	ci(scan): add Grype scanning alongside Trivy; fix --vuln-type flag	2026-04-20 22:45:48 +02:00

docker-claude 71494a59b3

Build images / check-docker (push) Successful in 1s

Details

Build images / scan (push) Failing after 1m42s

Details

Build images / build-and-push (push) Has been skipped

Details

ci(scan): add Grype scanning alongside Trivy; fix --vuln-type flag

Add anchore/grype:v0.88.0 as a second vulnerability scanner in the scan
job. Both images are scanned with Grype after Trivy — using --fail-on
high --only-fixed to match Trivy's HIGH/CRITICAL + ignore-unfixed gate.
Having two independent scanners catches CVEs that may be missing from
either database.

Also fix a typo in the Trivy claude scan step: --package-type is not a
valid Trivy flag; corrected to --vuln-type (matching the proxy step).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-20 22:45:48 +02:00

docker-build.yml

ci(scan): add Grype scanning alongside Trivy; fix --vuln-type flag

2026-04-20 22:45:48 +02:00