bug: Trivy is failing to valid the app Helm chart due to missing secrets

[WalterMoar]

Describe the Bug

When the analysis.yml workflow runs, the Trivy job is erroring when checking the Helm charts.

Expected Behaviour

When the analysis.yml workflow runs, the Trivy job should not produce an error.

Actual Behaviour

1. The analysis.yml workflow runs and is "green" / success
2. However, the Trivy job fails with the error:

ERROR [helm scanner] Failed to render Chart files file_path="charts/app" err="execution error at (quickstart-openshift/templates/secret.yaml:12:6): Secret %!s()-pguser-%!s() not found in namespace "

Steps To Reproduce

Steps to reproduce the behaviour:

1. Look at the Trivy job in a recent run of Analysis

Screenshots

Desktop (please complete the following information):

N/A

Additional context

Should the Trivy job be showing as "green" / success?

[DerekRoberts]

Hi @WalterMoar! Good catch. I don't think we can make Trivy stop workflows for minor errors like this, but it's still good to know! There's an attempt to fix the Helm misconfig here. I'll need help from @mishraomp to take this any further.

[WalterMoar]

Hi @DerekRoberts - I just merged this, rats, but I'm not keen on the added complexity. I'll probably revert and follow your lead!

https://github.com/bcgov/tenant-management-system/pull/302/changes