Merge pull request #2372 from k8s-infra-cherrypick-robot/cherry-pick-2370-to-release-1.30

andyzhangx · web-flow · commit a2a2ade16cf6 · 2025-02-08T13:56:03.000+08:00
[release-1.30] test: fix CVE-2025-22866 in trivy action
diff --git a/.github/workflows/trivy.yaml b/.github/workflows/trivy.yaml
@@ -12,7 +12,7 @@ jobs:
       - name: Set up Go 1.x
         uses: actions/setup-go@v5
         with:
-          go-version: 1.23.5
+          go-version: 1.23.6
         id: go
 
       - name: Checkout code
diff --git a/.trivyignore b/.trivyignore
@@ -1,2 +1,3 @@
 CVE-2024-45336
 CVE-2024-45341
+CVE-2025-22866
