From e68634f664d5c7eda0ccc2323eeff9800801e0dd Mon Sep 17 00:00:00 2001
From: Les Aker <me@lesaker.org>
Date: Tue, 1 Aug 2023 20:31:18 -0400
Subject: [PATCH] switch to trivy

---
 .github/workflows/build.yml | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index ccd72eb..c4ce7bb 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -26,8 +26,12 @@ jobs:
       run: "./scripts/download_terraform.sh $TERRAFORM_VERSION"
     - name: Check format
       run: "~/tfbin/terraform fmt -write=false -diff=true -check"
-    - name: Check tfsec
-      run: go install github.com/aquasecurity/tfsec/cmd/tfsec@latest && tfsec --concise-output
+    - name: Run Trivy
+      uses: aquasecurity/trivy-action@master
+      with:
+        scan-type: 'config'
+        hide-progress: false
+        exit-code: '1'
     - name: Post to hook-exporter
       run: "./.github/exporter.sh"
       env: