ci: Move Trivy checks after build

in order to scan built binaries too Signed-off-by: Knut Ahlers <knut@ahlers.me>
2024-06-26 14:12:14 +00:00 · 2023-06-12 23:10:24 +02:00 · 2023-06-12 23:10:24 +02:00 · d3e92c732f
commit d3e92c732f
parent 1720ebb665
1 changed files with 3 additions and 3 deletions
--- a/.github/workflows/test-and-build.yml
+++ b/.github/workflows/test-and-build.yml
@ -54,9 +54,6 @@ jobs:
        run: |
          go test -v ./...

-      - name: Execute Trivy scan
-        run: make trivy
-
      - name: Build release
        run: make publish
        env:
@ -65,6 +62,9 @@ jobs:
          NO_TESTS: 'true'
          PACKAGES: '.'

+      - name: Execute Trivy scan
+        run: make trivy
+
      - name: Extract changelog
        run: 'awk "/^#/ && ++c==2{exit}; /^#/f" "History.md" | tail -n +2 >release_changelog.md'