ci: add explicit scanners to Trivy configuration

ausbru87 · ausbru87 · commit 980a03918a01 · 2025-10-11T22:52:43.000-06:00
Enable vuln, secret, and misconfig scanners explicitly
diff --git a/.github/workflows/security.yaml b/.github/workflows/security.yaml
@@ -64,6 +64,7 @@ jobs:
           format: "sarif"
           output: "trivy-results.sarif"
           severity: "LOW,MEDIUM,HIGH,CRITICAL"
+          scanners: "vuln,secret,misconfig"
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3
