name: Docker container scanning
description: A container scanning tool using grype
author: Skydust

# Define your inputs here.
inputs:
  imageName:
    description: The image name
    required: true
  imagePrefix:
    description: The image prefix
    required: false
    default: ${{ gitea.server_url }}/${{ gitea.repository_owner }}/
  config:
    description: The grype configuration path
    required: false
    default: ""
  platform:
    description: The platform architecture to scan
    required: false
    default: ""
  failOn:
    description: Fail if a vulnerability is rated above or equal. [negligible,low,medium,high,critical]
    required: false
    default: "high"
  onlyFixed:
    description: Fails if a vulnerability is above failOn and fixed only
    required: false
    default: "true"

runs:
  using: docker
  image: Dockerfile