Add security check before docker publish

Fix #624
FalkorDB · Jan 24, 2025 · 4dd873d · 4dd873d
1 parent f8d1e06
commit 4dd873d
Showing 1 changed file with 15 additions and 0 deletions.
diff --git a/.github/workflows/release-image.yml b/.github/workflows/release-image.yml
@@ -33,5 +33,20 @@ jobs:
         with:
           context: .
           file: ./Dockerfile
+          push: false
+          tags: ${{ env.TAGS }}
+
+      - name: Scan image for vulnerabilities
+        uses: aquasecurity/[email protected]
+        with:
+          image-ref: ${{ env.TAGS }}
+          format: 'table'
+          exit-code: '1'
+          severity: 'CRITICAL,HIGH'
+
+      - name: Push image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
           push: true
           tags: ${{ env.TAGS }}