Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fs scan error: scan error: scan failed: failed analysis: walk filesystem: walk dir error: unknown error with /github/workspace: lstat /github/workspace: no such file or directory #404

Open
salmannaseempb opened this issue Oct 9, 2024 · 2 comments
Open

fs scan error: scan error: scan failed: failed analysis: walk filesystem: walk dir error: unknown error with /github/workspace: lstat /github/workspace: no such file or directory #404

salmannaseempb opened this issue Oct 9, 2024 · 2 comments

Comments

@salmannaseempb
Copy link

There seems to be an issue with the latest release v0.26.0 while scanning with trivy-action.

Expected Output:

A successful scan

Actual Output:

scan error: scan failed: failed analysis: walk filesystem: walk dir error: unknown error with /github/workspace: lstat /github/workspace: no such file or directory

name: Run Trivy vulnerability scanner to source code
uses: aquasecurity/trivy-action@master
with:
    scan-type: fs
    scan-ref: /github/workspace/
    format: "table"
    exit-code: "0"
    ignore-unfixed: true
    vuln-type: "os,library"
    severity: "CRITICAL,HIGH"

Downgrading it to v0.23.0 still works
@afdesk
Copy link

afdesk commented Oct 9, 2024

Hi @salmannaseempb
thanks for the report!

Is this issue repeatable?

NipunaRanasinghe added a commit to NipunaRanasinghe/ballerina-standard-library that referenced this issue Oct 9, 2024
@NipunaRanasinghe
Downgrade trivy action
ac61242 
# This is done as a workaround for aquasecurity/trivy-action#404
This was referenced Oct 9, 2024
Merged
Open
sergei-maertens added a commit to open-formulieren/open-forms that referenced this issue Oct 11, 2024
@sergei-maertens
📌 Pin trivy-action to 0.24.0
1d2495e 
To resolve the file path errors, see also aquasecurity/trivy-action#404
sergei-maertens added a commit to open-formulieren/open-forms that referenced this issue Oct 11, 2024
@sergei-maertens
📌 Pin trivy-action to 0.24.0
38930d7 
To resolve the file path errors, see also aquasecurity/trivy-action#404
sergei-maertens added a commit to open-formulieren/open-forms that referenced this issue Oct 11, 2024
@sergei-maertens
📌 Pin trivy-action to 0.24.0
c66dc6f 
To resolve the file path errors, see also aquasecurity/trivy-action#404
@sergei-maertens
Copy link

In a20de54 the action was changed from docker based to use a composite action, meaning that the mount paths no longer are correct (the docs are, but only if you use those particular pinned versions).

Replacing scan-ref: /github/workspace/ with scan-ref: ${{ github.workspace }}/ should fix the problem.

Versions up to and including 0.25.0 don't have that commit.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@sergei-maertens @afdesk @salmannaseempb