From 4015a897da6fb1f2d9abb2b796c94c577e4ac1e5 Mon Sep 17 00:00:00 2001
From: Luke Heath <luke@fleetdm.com>
Date: Mon, 4 Mar 2024 16:36:17 -0600
Subject: [PATCH] Update trivy scan options (#17357)

---
 .github/workflows/trivy-scan.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml
index 6aff3d2ae0..0d362fe9b4 100644
--- a/.github/workflows/trivy-scan.yml
+++ b/.github/workflows/trivy-scan.yml
@@ -40,6 +40,8 @@ jobs:
       - name: Run Trivy vulnerability scanner in repo mode
         uses: aquasecurity/trivy-action@062f2592684a31eb3aa050cc61e7ca1451cecd3d # 0.18.0
         with:
+          scan-type: "fs"
+          ignore-unfixed: false
           format: "sarif"
           output: "trivy-results.sarif"
           severity: "CRITICAL,HIGH,MEDIUM,LOW"