[upd] ci: docker secret maintenance

I've narrowed the permissions and rotated the token for the deploy account on DockerHub registry. I replaced the secret ref in GitHub so that it's available organization wide. No further actions are necessary.
author: Ivan Gabaldon <igabaldon@inetol.net> 2025-11-23 13:11:05 +0100
committer: Ivan Gabaldon <igabaldon@inetol.net> 2025-11-23 12:26:40 +0000
commit: 2f0e52d6ebad4c4f825e88142de2c62660053456 (patch)
tree: 1620e0f09eaf91b95616f5ffdfcc10eb97264fce /.github/workflows/security.yml
parent: c0d69cec4ec4f0edb0e09412b08b1923bd15bd81 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index b121abd29..ee44a363b 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -32,8 +32,8 @@ jobs:
         uses: docker/scout-action@f8c776824083494ab0d56b8105ba2ca85c86e4de  # v1.18.2
         with:
           organization: "searxng"
-          dockerhub-user: "${{ secrets.DOCKERHUB_USERNAME }}"
-          dockerhub-password: "${{ secrets.DOCKERHUB_TOKEN }}"
+          dockerhub-user: "${{ secrets.DOCKER_USER }}"
+          dockerhub-password: "${{ secrets.DOCKER_TOKEN }}"
           image: "registry://ghcr.io/searxng/searxng:latest"
           command: "cves"
           sarif-file: "./scout.sarif"
author	Ivan Gabaldon <igabaldon@inetol.net>	2025-11-23 13:11:05 +0100
committer	Ivan Gabaldon <igabaldon@inetol.net>	2025-11-23 12:26:40 +0000
commit	2f0e52d6ebad4c4f825e88142de2c62660053456 (patch)
tree	1620e0f09eaf91b95616f5ffdfcc10eb97264fce /.github/workflows/security.yml
parent	c0d69cec4ec4f0edb0e09412b08b1923bd15bd81 (diff)