Update docker/trivy/start.sh

2024-01-20 21:23:49 +00:00 · 2024-01-20 21:23:49 +00:00 · c5cf561c1e
parent 2e3fe96d53
commit c5cf561c1e
1 changed files with 7 additions and 1 deletions
--- a/docker/trivy/start.sh
+++ b/docker/trivy/start.sh
@ -1,10 +1,16 @@
 #!/bin/sh

 TIMEOUT=${TIMEOUT:-120m}
-SCANNERS=("vuln" "config" "secret")
 IGNORE_UNFIXED=${IGNORE_UNFIXED:-false}
 LOW_PRIORITY=${LOW_PRIORITY:-true}

+# Use SCANNERS_ENV if provided, otherwise default to vuln, config, secret
+if [ -n "$SCANNERS_ENV" ]; then
+    IFS=',' read -r -a SCANNERS <<< "$SCANNERS_ENV"
+else
+    SCANNERS=("vuln" "config" "secret")
+fi
+
 run_scan() {
    for SCANNER in "${SCANNERS[@]}"; do
        CURRENT_LOG="/log/trivy_scan_${SCANNER}.log"