From f374dd784a3b0705b4a48736a41c6a1e0fa3629f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 14 Feb 2026 10:04:26 +0000 Subject: [PATCH] build(deps): Bump aquasecurity/trivy-action from 0.24.0 to 0.34.0 Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.24.0 to 0.34.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/0.24.0...0.34.0) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-version: 0.34.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/container-publish.yml | 2 +- .github/workflows/security.yml | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/container-publish.yml b/.github/workflows/container-publish.yml index ea030e4..c3ad5d5 100644 --- a/.github/workflows/container-publish.yml +++ b/.github/workflows/container-publish.yml @@ -65,7 +65,7 @@ jobs: sbom: true - name: Trivy image scan - uses: aquasecurity/trivy-action@0.24.0 + uses: aquasecurity/trivy-action@0.34.0 with: image-ref: ${{ env.REGISTRY }}/${{ env.OWNER_LC }}/${{ matrix.image }}:sha-${{ github.sha }} format: table diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml index a793904..a5df777 100644 --- a/.github/workflows/security.yml +++ b/.github/workflows/security.yml @@ -38,7 +38,7 @@ jobs: uses: actions/checkout@v4 - name: Trivy filesystem scan - uses: aquasecurity/trivy-action@0.24.0 + uses: aquasecurity/trivy-action@0.34.0 with: scan-type: fs scan-ref: . @@ -47,7 +47,7 @@ jobs: exit-code: "1" - name: Trivy config scan - uses: aquasecurity/trivy-action@0.24.0 + uses: aquasecurity/trivy-action@0.34.0 with: scan-type: config scan-ref: .