Files
kata-containers/.github/workflows
stevenhorsman 86b8afb761 workflows: refactor osv-scanner workflows
When I implemented the OSC scanner I followed the
guidance on the the action repo to use a single workflow for
both PR and main tests and rely on a re-usable workflow.
Since then I've realised some negatives of this approach:
- Unlike actions, dependabot needs custom logic to bump
workflow pins, so we are more likely to be out of date
- A lack of transparency/notification of when updates
are needed, due to bugs/ security fixes
- The dual workflow results in skipped jobs that
clutter the UI
- No ability to customise the pre-steps, or config

As such let's take the hit of managing two workflows,
in order to give us better flexibility.

Also add the `--call-analysis=none` option as we run govulncheck
separately, so don't want to have to compile and have a slow build

Signed-off-by: stevenhorsman <steven@uk.ibm.com>
Generated-By: IBM Bob
2026-06-09 13:38:17 +01:00
..
2026-03-31 10:51:17 -05:00
2026-04-28 13:10:36 +01:00
2026-04-14 16:25:35 +01:00
2026-04-28 13:10:36 +01:00