From b506ae4126f3a00bcb6368a45bd45686e3e399bc Mon Sep 17 00:00:00 2001
From: rubenruizdegauna <rubenruizdegauna@gmail.com>
Date: Thu, 11 Jul 2024 16:12:15 +0200
Subject: [PATCH] test docker image from PR (#1892)

---
 .github/workflows/security.yml | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index 069dd7bc6..e77834079 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -52,13 +52,14 @@ jobs:
       - name: Build agent binaries
         run: make ci/build TAG=DEV_CI
 
+        # don't use buildx so the image gets added to the docker local registry
       - name: Build container agent (amd64)
-        run: make -C build/container/ build/base-amd64
+        run: make -C build/container/ build/base-amd64 DOCKER_BUILD_TAG_PREFIX=pr USE_BUILDX=false
 
-      - name: Scan newrelic/infrastructure container image
+      - name: Scan the created container image
         uses: aquasecurity/trivy-action@master
         with:
-          image-ref: "newrelic/infrastructure:build-amd64"
+          image-ref: "newrelic/infrastructure:pr-amd64"
           format: 'table'
           exit-code: '1'
           ignore-unfixed: true