chore: remove Trivy vulnerability scanner for PHP 8.3 from GitHub Actions workflow

bbsnly · bbsnly · commit 35bd0e84baaf · 2025-01-24T14:43:34.000+01:00
diff --git a/.github/workflows/php.yml b/.github/workflows/php.yml
@@ -62,19 +62,3 @@ jobs:
       with:
         token: ${{ secrets.CODECOV_TOKEN }}
         files: ./coverage.xml
-
-    - name: Run Trivy vulnerability scanner in repo mode
-      uses: aquasecurity/trivy-action@0.28.0
-      if: ${{ matrix.php-versions == '8.3' }}
-      with:
-        scan-type: 'fs'
-        ignore-unfixed: true
-        format: 'sarif'
-        output: 'trivy-results.sarif'
-        severity: 'CRITICAL'
-
-    - name: Upload Trivy scan results to GitHub Security tab
-      uses: github/codeql-action/upload-sarif@v3
-      if: ${{ matrix.php-versions == '8.3' }}
-      with:
-        sarif_file: 'trivy-results.sarif'
