Enabling container scans with anchore (!14767) · Merge requests · Administrator / sourcegraph

Administrator requested to merge ck-13557 into main Oct 15, 2020

Created by: chayim

This PR enables container scans of the server container, with anchore. It generates sarif responses which integrates into the GitHub ecosystem, as well as anchore-reports.

While the build has been tested locally using act, the upload-sarif and upload-artifact actions cannot be tested locally.

Enabling container scans with anchore

Merge request reports