From 02fc5bd1068fe9eeab0bb2c12fe5d384741c3031 Mon Sep 17 00:00:00 2001 From: Toutsu Date: Sat, 13 Jun 2026 12:19:25 +0300 Subject: [PATCH] ci: increase trivy fs scan timeout to 30m Slow ARM64 runners hit the default timeout while downloading the Trivy checks bundle and analyzing workflow YAML files. Extend the timeout so PR checks can complete reliably. --- .gitea/workflows/pr-checks.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.gitea/workflows/pr-checks.yml b/.gitea/workflows/pr-checks.yml index 8dfa56e..0785952 100644 --- a/.gitea/workflows/pr-checks.yml +++ b/.gitea/workflows/pr-checks.yml @@ -65,7 +65,7 @@ jobs: - name: Trivy filesystem security scan run: | set +e - trivy fs --scanners vuln,misconfig,secret --exit-code 1 --severity HIGH,CRITICAL . 2>&1 | tee trivy-scan.log + trivy fs --timeout 30m --scanners vuln,misconfig,secret --exit-code 1 --severity HIGH,CRITICAL . 2>&1 | tee trivy-scan.log trivy_exit="${PIPESTATUS[0]}" if ! grep -Eq "Number of language-specific files[[:space:]]+num=[1-9][0-9]*" trivy-scan.log; then echo "::error::Trivy did not detect any language-specific dependency files."