From ac85c3c89345893767a7b214aa81f16a7c3e978c Mon Sep 17 00:00:00 2001
From: Corneil du Plessis <corneil.du-plessis@broadcom.com>
Date: Mon, 18 Nov 2024 13:46:14 +0200
Subject: [PATCH] Provide alternative Trivy repo

Added enviromental variables with multiple trivy repos.
---
 .github/workflows/common.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/common.yml b/.github/workflows/common.yml
index c2b2b08bd..a77e39be1 100644
--- a/.github/workflows/common.yml
+++ b/.github/workflows/common.yml
@@ -21,7 +21,7 @@ on:
       enableSecurityScan:
         type: boolean
         required: false
-        default: false
+        default: true
         description: 'Enable security scan with Trivy'
     secrets:
       DOCKERHUB_USERNAME:
@@ -40,6 +40,8 @@ env:
   VERBOSE: ${{ (github.debug || inputs.verbose) && 'true' || '' }}
   BRANCH: ${{ inputs.branch }}
   MAVEN_THREADS: ${{ inputs.mavenThreads }}
+  TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db,aquasec/trivy-db,ghcr.io/aquasecurity/trivy-db
+  TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db,aquasec/trivy-java-db,ghcr.io/aquasecurity/trivy-java-db
 
 jobs:
   parameters: