use alternate repository for trivy vulnerabilities database in Publish workflow

dandelany · dandelany · commit 525d30f602dd · 2024-12-06T12:06:28.000-08:00
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -151,6 +151,9 @@ jobs:
 
       - name: Scan ${{ matrix.image }} for vulnerabilities
         uses: aquasecurity/trivy-action@0.24.0
+        env:
+          TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
+          TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
         with:
           image-ref: ${{ env.REGISTRY }}/${{ env.OWNER }}/${{ matrix.image }}:develop
           ignore-unfixed: true
