From 1ce8881f17c394078b07d0431693ebaaa011a64d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 2 Jul 2024 16:19:02 +0200 Subject: [PATCH] fix(deps): bump aquasecurity/trivy-action from 0.22.0 to 0.23.0 (#14) Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.22.0 to 0.23.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/0.22.0...0.23.0) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- action.yaml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/action.yaml b/action.yaml index ae4aa14..9e4bbe0 100644 --- a/action.yaml +++ b/action.yaml @@ -44,7 +44,7 @@ runs: password: ${{ inputs.token }} - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@0.22.0 + uses: aquasecurity/trivy-action@0.23.0 with: image-ref: ${{ inputs.image-ref }} format: "json" @@ -52,7 +52,7 @@ runs: github-pat: ${{ inputs.token }} - name: Convert results to sarif - uses: aquasecurity/trivy-action@0.22.0 + uses: aquasecurity/trivy-action@0.23.0 with: image-ref: results.json scan-type: "convert" @@ -73,7 +73,7 @@ runs: - name: Convert trivy results to cosign-vuln if: ${{ inputs.attest && !inputs.digest }} - uses: aquasecurity/trivy-action@0.22.0 + uses: aquasecurity/trivy-action@0.23.0 with: image-ref: results.json scan-type: "convert" @@ -95,7 +95,7 @@ runs: - name: Convert trivy results to cyclonedx if: ${{ inputs.attest && inputs.digest }} - uses: aquasecurity/trivy-action@0.22.0 + uses: aquasecurity/trivy-action@0.23.0 with: image-ref: results.json scan-type: "convert"