From e7aca8b2d4ef0d462ec84e12e7096ea4140f4596 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 7 Oct 2024 22:05:45 +0000 Subject: [PATCH] Bump aquasecurity/trivy-action in /.github/workflows Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.24.0 to 0.25.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/0.24.0...0.25.0) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/build.yaml | 2 +- .github/workflows/integration-test.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml index c5d3c10..06a6d26 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/build.yaml @@ -41,7 +41,7 @@ jobs: registry: ghcr.io/${{ github.repository_owner }}/${{ github.repository }} username: ${{ github.actor }} password: ${{ github.token }} - - uses: aquasecurity/trivy-action@0.24.0 + - uses: aquasecurity/trivy-action@0.25.0 with: image-ref: ghcr.io/${{ github.repository_owner }}/${{ github.repository }}:main format: sarif diff --git a/.github/workflows/integration-test.yaml b/.github/workflows/integration-test.yaml index 5e40fd8..0a5bfba 100644 --- a/.github/workflows/integration-test.yaml +++ b/.github/workflows/integration-test.yaml @@ -47,7 +47,7 @@ jobs: registry: ghcr.io/${{ github.repository_owner }}/${{ github.repository }} username: ${{ github.actor }} password: ${{ github.token }} - - uses: aquasecurity/trivy-action@0.24.0 + - uses: aquasecurity/trivy-action@0.25.0 with: image-ref: ghcr.io/${{ github.repository_owner }}/${{ github.repository }}:pr-${{ github.event.pull_request.number }} format: sarif