@ -45,6 +45,19 @@ steps:
when:
event: pull_request
- name: grype security check
image: anchore/grype
volumes:
- name: dockersock
path: /var/run/docker.sock
environment:
REGISTRY: registry.fedy95.com
commands:
- "grype $REGISTRY/baseimage-yamllint:$DRONE_COMMIT_SHA --scope all-layers --fail-on=critical"
- name: cleanup
image: docker:dind
