Run Trivy scan on PR instead of on the base branch

Signed-off-by: Kim Christensen <kimworking@gmail.com>
getporter · May 9, 2024 · b4c4288 · b4c4288
1 parent 8dec6ac
commit b4c4288
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/trivy.yaml b/.github/workflows/trivy.yaml
@@ -8,7 +8,7 @@ on:
       # Dependabot pushes to branches in our repo, not in a fork. This causes the push event to trigger for dependabot PRs and the CodeQL check fails.
       - "dependabot/**"
   # Only do a security scan on a PR when there are non-doc changes to save time
-  pull_request_target:
+  pull_request:
     paths-ignore:
       - 'docs/**'