From 9664078e1c329591def5fc2d9f90c9db3b109da1 Mon Sep 17 00:00:00 2001
From: Eli Flores <eli.flores@digitalservice.bund.de>
Date: Wed, 9 Oct 2024 11:57:11 +0200
Subject: [PATCH] test(deps): try disabling the trivy-db cache

_because why not_
---
 .github/workflows/pipeline.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml
index b888c8e..b4e3faf 100644
--- a/.github/workflows/pipeline.yml
+++ b/.github/workflows/pipeline.yml
@@ -83,6 +83,7 @@ jobs:
           image-ref: ${{ env.CONTAINER_REGISTRY }}/${{ env.CONTAINER_IMAGE_NAME }}:${{ env.CONTAINER_IMAGE_VERSION }}
           format: "sarif"
           output: "trivy-results.sarif"
+          cache: 'false'
       # Uploading sarif files only works for public repos, in case you have a private repo, please remove the lines below
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3
@@ -101,6 +102,7 @@ jobs:
           image-ref: ${{ env.CONTAINER_REGISTRY }}/${{ env.CONTAINER_IMAGE_NAME }}:${{ env.CONTAINER_IMAGE_VERSION }}
           format: "cosign-vuln"
           output: "vuln.json"
+          cache: 'false'
       - name: Upload cosign vulnerability scan record
         uses: actions/upload-artifact@v4
         with: