From 78ee32fd588ab273fa2cc890487b614be8c5c754 Mon Sep 17 00:00:00 2001 From: Ian Littman Date: Fri, 21 Nov 2025 17:39:09 -0600 Subject: [PATCH] Don't nuke built container images before testing them for vulns (#36168) Otherwise we're just pulling the currently published Docker images and checking *those* rather than what's on `main`. --- .../workflows/build-fleetdm-bomutils-check-vulnerabilities.yml | 2 +- .../workflows/build-fleetdm-fleetctl-check-vulnerabilities.yml | 2 +- .github/workflows/build-fleetdm-wix-check-vulnerabilities.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/build-fleetdm-bomutils-check-vulnerabilities.yml b/.github/workflows/build-fleetdm-bomutils-check-vulnerabilities.yml index 56dd758609..aaaeac48de 100644 --- a/.github/workflows/build-fleetdm-bomutils-check-vulnerabilities.yml +++ b/.github/workflows/build-fleetdm-bomutils-check-vulnerabilities.yml @@ -43,7 +43,7 @@ jobs: - name: Clean up Docker build cache run: | - docker system prune -af + docker builder prune -af df -h - name: List VEX files diff --git a/.github/workflows/build-fleetdm-fleetctl-check-vulnerabilities.yml b/.github/workflows/build-fleetdm-fleetctl-check-vulnerabilities.yml index de0fcf1b7c..78d417db36 100644 --- a/.github/workflows/build-fleetdm-fleetctl-check-vulnerabilities.yml +++ b/.github/workflows/build-fleetdm-fleetctl-check-vulnerabilities.yml @@ -43,7 +43,7 @@ jobs: - name: Clean up Docker build cache run: | - docker system prune -af + docker builder prune -af df -h - name: List VEX files diff --git a/.github/workflows/build-fleetdm-wix-check-vulnerabilities.yml b/.github/workflows/build-fleetdm-wix-check-vulnerabilities.yml index 4285230791..ea8fb4350e 100644 --- a/.github/workflows/build-fleetdm-wix-check-vulnerabilities.yml +++ b/.github/workflows/build-fleetdm-wix-check-vulnerabilities.yml @@ -43,7 +43,7 @@ jobs: - name: Clean up Docker build cache run: | - docker system prune -af + docker builder prune -af df -h - name: List VEX files