fix(deps): bump aquasecurity/trivy-action from 0.22.0 to 0.23.0 (#14)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.22.0 to 0.23.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@0.22.0...0.23.0) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
adfinis · Jul 2, 2024 · 1ce8881 · 1ce8881
1 parent 2d45208
commit 1ce8881
Showing 1 changed file with 4 additions and 4 deletions.
diff --git a/action.yaml b/action.yaml
@@ -44,15 +44,15 @@ runs:
         password: ${{ inputs.token }}
 
     - name: Run Trivy vulnerability scanner
-      uses: aquasecurity/trivy-action@0.22.0
+      uses: aquasecurity/trivy-action@0.23.0
       with:
         image-ref: ${{ inputs.image-ref }}
         format: "json"
         output: "results.json"
         github-pat: ${{ inputs.token }}
 
     - name: Convert results to sarif
-      uses: aquasecurity/trivy-action@0.22.0
+      uses: aquasecurity/trivy-action@0.23.0
       with:
         image-ref: results.json
         scan-type: "convert"
@@ -73,7 +73,7 @@ runs:
 
     - name: Convert trivy results to cosign-vuln
       if: ${{ inputs.attest && !inputs.digest }}
-      uses: aquasecurity/trivy-action@0.22.0
+      uses: aquasecurity/trivy-action@0.23.0
       with:
         image-ref: results.json
         scan-type: "convert"
@@ -95,7 +95,7 @@ runs:
 
     - name: Convert trivy results to cyclonedx
       if: ${{ inputs.attest && inputs.digest }}
-      uses: aquasecurity/trivy-action@0.22.0
+      uses: aquasecurity/trivy-action@0.23.0
       with:
         image-ref: results.json
         scan-type: "convert"