Add automatic mirror to OWASP repository

.github/workflows/mirror-to-owasp.yml

@@ -0,0 +1,43 @@
+name: Mirror to OWASP Repository
+
+on:
+  push:
+    branches:
+      - main
+    tags:
+      - '*'
+
+jobs:
+  mirror:
+    runs-on: ubuntu-latest
+    name: Mirror repository to OWASP
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          fetch-tags: true
+
+      - name: Mirror to OWASP repository
+        env:
+          OWASP_REPO_URL: https://github.com/OWASP/www-project-docksec.git
+          GITHUB_TOKEN: ${{ secrets.OWASP_MIRROR_TOKEN }}
+        run: |
+          git config --global user.name "GitHub Actions Bot"
+          git config --global user.email "actions@github.com"
+
+          # Add OWASP remote
+          git remote add owasp https://x-access-token:${GITHUB_TOKEN}@github.com/OWASP/www-project-docksec.git
+
+          # Push the main branch
+          echo "Pushing main branch to OWASP repository..."
+          git push owasp main --force
+
+          # Push all tags
+          echo "Pushing tags to OWASP repository..."
+          git push owasp --tags --force
+
+          echo "Mirror completed successfully!"

.github/workflows/python-app.yml

@@ -27,7 +27,12 @@ jobs:
 
     - name: Setup Trivy
       run: |
-        curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin v0.43.1
+        sudo apt-get update
+        sudo apt-get install -y wget apt-transport-https gnupg lsb-release
+        wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key | sudo gpg --dearmor -o /usr/share/keyrings/trivy.gpg
+        echo "deb [signed-by=/usr/share/keyrings/trivy.gpg] https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -sc) main" | sudo tee /etc/apt/sources.list.d/trivy.list
+        sudo apt-get update
+        sudo apt-get install -y trivy
 
     - name: Install dependencies
       run: |