Run Trivy #172

	name: Run Trivy

	on: push

	jobs:
	build:
	name: Build
	runs-on: ubuntu-latest
	steps:
	- name: Checkout code
	uses: actions/checkout@v2

	- name: Build an image from Dockerfile
	run: \|
	docker build -f docker/docker-files/Dockerfile -t docker.io/gisaia/arlas-persistence-server:${{ github.sha }} .

	- name: Run Trivy vulnerability scanner
	uses: aquasecurity/trivy-action@master
	with:
	image-ref: 'docker.io/gisaia/arlas-persistence-server:${{ github.sha }}'
	format: 'table'
	exit-code: '1'
	ignore-unfixed: false
	vuln-type: 'os,library'
	severity: 'CRITICAL,HIGH'
	trivyignores: .github/workflows/.trivyignore

Provide feedback