From 14b8a999f3929975756ed6f9dc33c54977b5cedc Mon Sep 17 00:00:00 2001
From: Ivan Gabaldon <igabaldon@inetol.net>
Date: Sun, 25 May 2025 14:54:27 +0200
Subject: [mod] ci: exclude some workflows from forks (#4849)

Excludes some workflows/jobs unneeded on forks.

Closes https://github.com/searxng/searxng/issues/4847
---
 .github/workflows/security.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to '.github/workflows/security.yml')

diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index e994306b8..73a5fd77f 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -16,6 +16,7 @@ permissions:
 
 jobs:
   container:
+    if: github.repository_owner == 'searxng'
     name: Container
     runs-on: ubuntu-24.04-arm
     permissions:
@@ -30,7 +31,7 @@ jobs:
       - name: Run Trivy scanner
         uses: aquasecurity/trivy-action@0.30.0
         with:
-          image-ref: "docker.io/searxng/searxng:latest"
+          image-ref: "ghcr.io/searxng/searxng:latest"
           vuln-type: "os,library"
           severity: "UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL"
           ignore-unfixed: "false"
-- 
cgit v1.2.3