From f637eada9eed3b8c292a462e21fc4a68cea4c04a Mon Sep 17 00:00:00 2001
From: NipunaMadhushan <nipuna.madhushan96@gmail.com>
Date: Thu, 6 Nov 2025 14:52:32 +0530
Subject: [PATCH] Update trivy scan step

---
 .github/workflows/central-publish.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/central-publish.yml b/.github/workflows/central-publish.yml
index 2d10d26..12d1a68 100644
--- a/.github/workflows/central-publish.yml
+++ b/.github/workflows/central-publish.yml
@@ -33,10 +33,10 @@ jobs:
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@master
         with:
-          scan-type: 'rootfs'
-          scan-ref: '/github/workspace/ballerina/lib'
+          scan-type: 'fs'
+          scan-ref: "${{ github.workspace }}/ballerina/lib"
           format: 'table'
-          timeout: '10m0s'
+          timeout: '6m0s'
           exit-code: '1'
 
       - name: Ballerina Central Push