Woodpecker CI

This is a simple example configuration .woodpecker/trivy.yml that shows how you could get started:

pipeline:
  securitycheck:
    image: aquasec/trivy:latest
    commands:
      # use any trivy command, if exit code is 0 woodpecker marks it as passed, else it assumes it failed
      - trivy fs --exit-code 1 --skip-dirs web/ --skip-dirs docs/ --severity MEDIUM,HIGH,CRITICAL .

Woodpecker does use Trivy itself so you can see an Example run at its Repository and how it was added.