From 3cf3450b5873e796b2bd6f78b5989af16074bfe4 Mon Sep 17 00:00:00 2001
From: Stefan Reimer <stefan@zero-downtime.net>
Date: Fri, 23 May 2025 18:09:30 +0000
Subject: [PATCH] ci: make trivy work again

---
 .trivyignore.yaml => .trivyignore | 0
 Dockerfile                        | 3 ---
 2 files changed, 3 deletions(-)
 rename .trivyignore.yaml => .trivyignore (100%)

diff --git a/.trivyignore.yaml b/.trivyignore
similarity index 100%
rename from .trivyignore.yaml
rename to .trivyignore
diff --git a/Dockerfile b/Dockerfile
index 54abd96..96b6726 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -33,9 +33,6 @@ RUN curl -fsSL https://get.pulumi.com/ | sh -s -- --version $(pip show pulumi --
 # minimal pulumi
 RUN cd /root/.pulumi/bin && rm -f *dotnet *yaml *go *java && strip pulumi* || true
 
-# Remove AWS keys from docstring to prevent trivy alerts later
-RUN sed -i -e 's/AKIA.*//' /venv/lib/python${RUNTIME_VERSION}/site-packages/pulumi_aws/lightsail/bucket_access_key.py
-
 # Now build the final runtime, incl. running rootless containers
 FROM python:${RUNTIME_VERSION}-alpine${DISTRO_VERSION}