{"id":28089343,"url":"https://github.com/lazy-actions/gitrivy","last_synced_at":"2025-05-13T12:57:08.420Z","repository":{"id":40727979,"uuid":"221843546","full_name":"lazy-actions/gitrivy","owner":"lazy-actions","description":"GitHub Issue + Trivy Action","archived":false,"fork":false,"pushed_at":"2023-01-07T04:32:29.000Z","size":1104,"stargazers_count":55,"open_issues_count":16,"forks_count":25,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-04-24T22:58:33.672Z","etag":null,"topics":["docker","github-actions","security","trivy","typescript"],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/lazy-actions.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-11-15T04:24:28.000Z","updated_at":"2025-03-16T02:51:31.000Z","dependencies_parsed_at":"2023-01-11T17:22:00.538Z","dependency_job_id":null,"html_url":"https://github.com/lazy-actions/gitrivy","commit_stats":{"total_commits":130,"total_committers":7,"mean_commits":"18.571428571428573","dds":0.1461538461538462,"last_synced_commit":"010deae787d03f57f7d67f0785b9b329eef24c22"},"previous_names":[],"tags_count":8,"template":false,"template_full_name":"actions/typescript-action","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lazy-actions%2Fgitrivy","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lazy-actions%2Fgitrivy/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lazy-actions%2Fgitrivy/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lazy-actions%2Fgitrivy/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/lazy-actions","download_url":"https://codeload.github.com/lazy-actions/gitrivy/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253948346,"owners_count":21988953,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["docker","github-actions","security","trivy","typescript"],"created_at":"2025-05-13T12:57:07.798Z","updated_at":"2025-05-13T12:57:08.409Z","avatar_url":"https://github.com/lazy-actions.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Gitrivy (GitHub Issue + Trivy Action)\n\n![GitHub Workflow Status](https://img.shields.io/github/workflow/status/lazy-actions/gitrivy/Build)\n![GitHub Workflow Status](https://img.shields.io/github/workflow/status/lazy-actions/gitrivy/Integration%20Test?label=Integration%20Test)\n![GitHub Workflow Status](https://img.shields.io/github/workflow/status/lazy-actions/gitrivy/Unit%20Test?label=Unit%20Test)\n![GitHub release (latest by date)](https://img.shields.io/github/v/release/homoluctus/gitrivy?color=brightgreen\u0026include_prereleases)\n![LICENSE](https://img.shields.io/github/license/homoluctus/gitrivy?color=brightgreen)\n\nThis is a GitHub Actions to scan vulnerability using [Trivy](https://github.com/aquasecurity/trivy).\u003cbr\u003e\nIf vulnerabilities are found by Trivy, it creates the following GitHub Issue.\n\n![image](./assets/img/issue.png)\n\n## Feature\n\n- Scan vulnerability used by Trivy\n- Create or Update GitHub Issue if vulnerabilities found\n  - Customize Issue title, label and assignee\n  - Issue body is generated by template parameter\n\n## Inputs\n\n|Parameter|Required|Default Value|Description|\n|:--:|:--:|:--:|:--|\n|token|True|N/A|GitHub Access Token.\u003cbr\u003e${{ secrets.GITHUB_TOKEN }} is recommended.|\n|image|True|N/A|The target image name to scan the vulnerability\u003cbr\u003eSpecify this parameter or `IMAGE_NAME` environment variable|\n|trivy_version|False|latest|Trivy version|\n|severity|False|HIGH,CRITICAL|Severities of vulnerabilities (separated by commma)|\n|vuln_type|False|os,library|Scan target are os and / or library (separated by commma)|\n|ignore_unfixed|False|false|Ignore unfixed vulnerabilities\u003cbr\u003ePlease specify `true` or `false`|\n|template|False|N/A|Path to template file\u003cbr\u003eThis parameter equals trivy --template option\u003cbr\u003eBy default, it uses src/default.tpl which is based on [contrib/html.tpl](https://github.com/aquasecurity/trivy/blob/main/contrib/html.tpl)\u003cbr\u003ereference: [Report Formats - Trivy](https://aquasecurity.github.io/trivy/v0.18.3/examples/report/#template)|\n|issue_title|False|Security Alert|Issue title|\n|issue_label|False|trivy,vulnerability|Issue label (separated by commma)|\n|issue_assignee|False|N/A|Issue assignee (separated by commma)|\n|fail_on_vulnerabilities|False|false|Whether the action should fail if any vulnerabilities were found.|\n\n## Outputs\n\n|Parameter|Description|\n|:--:|:--|\n|html_url|The URL to view the issue|\n|issue_number|The created issue number|\n\n## Example\n\nDetect your docker image vulnerability everyday at 9:00 (UTC).\n\n```yaml\nname: Vulnerability Scan\n\non:\n  schedule:\n    - cron: '0 9 * * *'\n\njobs:\n  scan:\n    name: Daily Vulnerability Scan\n    runs-on: ubuntu-latest\n    steps:\n      - name: Pull docker image\n        run: docker pull sample\n\n      - uses: lazy-actions/gitrivy@v3\n        with:\n          token: ${{ secrets.GITHUB_TOKEN }}\n          image: sample\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flazy-actions%2Fgitrivy","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flazy-actions%2Fgitrivy","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flazy-actions%2Fgitrivy/lists"}