Skip to content

Commit 30110e2

Browse files
dependabot[bot]DawidWesierski4
dependabot[bot]
and
DawidWesierski4
authored
Build(deps): Bump aquasecurity/trivy-action from 0.30.0 to 0.32.0 (#1229)
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.30.0 to 0.32.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aquasecurity/trivy-action/releases">aquasecurity/trivy-action's releases</a>.</em></p> <blockquote> <h2>v0.32.0</h2> <h2>What's Changed</h2> <ul> <li>chore(deps): Update trivy to v0.64.1 by <a href="https://github.com/aqua-bot"><code>@​aqua-bot</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/474">aquasecurity/trivy-action#474</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/aquasecurity/trivy-action/compare/0.31.0...0.32.0">https://github.com/aquasecurity/trivy-action/compare/0.31.0...0.32.0</a></p> <h2>v0.31.0</h2> <h2>What's Changed</h2> <ul> <li>docs: add info that <code>unix:/</code> prefix is required for <code>docker-host</code> input by <a href="https://github.com/DmitriyLewen"><code>@​DmitriyLewen</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/455">aquasecurity/trivy-action#455</a></li> <li>Fix Trivy action inputs leaking between invocations (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/422">#422</a>) by <a href="https://github.com/rvesse"><code>@​rvesse</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/454">aquasecurity/trivy-action#454</a></li> <li>Pin aquasecuriy/setup-trivy to hash instead of tag by <a href="https://github.com/lhotari"><code>@​lhotari</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/456">aquasecurity/trivy-action#456</a></li> <li>Bump Trivy version to fix GitHub actions by <a href="https://github.com/maximmasiutin"><code>@​maximmasiutin</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/460">aquasecurity/trivy-action#460</a></li> <li>refactor: use ubuntu 24.04 in example code by <a href="https://github.com/simar7"><code>@​simar7</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/465">aquasecurity/trivy-action#465</a></li> <li>ci: fix workflow to bump Trivy by <a href="https://github.com/nikpivkin"><code>@​nikpivkin</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/466">aquasecurity/trivy-action#466</a></li> <li>chore(deps): Update trivy to v0.63.0 by <a href="https://github.com/aqua-bot"><code>@​aqua-bot</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/467">aquasecurity/trivy-action#467</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/lhotari"><code>@​lhotari</code></a> made their first contribution in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/456">aquasecurity/trivy-action#456</a></li> <li><a href="https://github.com/maximmasiutin"><code>@​maximmasiutin</code></a> made their first contribution in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/460">aquasecurity/trivy-action#460</a></li> <li><a href="https://github.com/aqua-bot"><code>@​aqua-bot</code></a> made their first contribution in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/467">aquasecurity/trivy-action#467</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/aquasecurity/trivy-action/compare/0.30.0...0.31.0">https://github.com/aquasecurity/trivy-action/compare/0.30.0...0.31.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/aquasecurity/trivy-action/commit/dc5a429b52fcf669ce959baa2c2dd26090d2a6c4"><code>dc5a429</code></a> chore(deps): Update trivy to v0.64.1 (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/474">#474</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/76071ef0d7ec797419534a183b498b4d6366cf37"><code>76071ef</code></a> chore(deps): Update trivy to v0.63.0 (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/467">#467</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/4844d823d3541b70e147062249823a5cf735b7b8"><code>4844d82</code></a> ci: fix workflow to bump Trivy (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/466">#466</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/26d71e622b84d103f86fb33a5a42c558e11f4ae0"><code>26d71e6</code></a> refactor: use ubuntu 24.04 (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/465">#465</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/b3dafe507ffa004210975439a1e6156b8ebb3f50"><code>b3dafe5</code></a> Bump Trivy version to fix GitHub actions (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/460">#460</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/99baf0d8b4e787c3cfd7b602664c8ce60a43cd38"><code>99baf0d</code></a> Pin aquasecuriy/setup-trivy to hash instead of tag (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/456">#456</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/7aca5acc9500b463826cc47a47a65ad7d404b045"><code>7aca5ac</code></a> fix: Trivy action inputs leaking between invocations (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/422">#422</a>) (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/454">#454</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/ea27ac12e15e065601133e2e439657937385d5a8"><code>ea27ac1</code></a> docs: add info that <code>unix:/</code> prefix is required (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/455">#455</a>)</li> <li>See full diff in <a href="https://github.com/aquasecurity/trivy-action/compare/6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5...dc5a429b52fcf669ce959baa2c2dd26090d2a6c4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasecurity/trivy-action&package-manager=github_actions&previous-version=0.30.0&new-version=0.32.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: DawidWesierski4 <92673141+DawidWesierski4@users.noreply.github.com>
1 parent 439b4fd commit 30110e2

File tree

1 file changed

+4
-4
lines changed

1 file changed

+4
-4
lines changed

.github/workflows/trivy.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -53,7 +53,7 @@ jobs:
5353

5454

5555
- name: Run Trivy vulnerability scanner with sarif output
56-
uses: aquasecurity/trivy-action@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5 # v0.30.0
56+
uses: aquasecurity/trivy-action@dc5a429b52fcf669ce959baa2c2dd26090d2a6c4 # v0.32.0
5757
with:
5858
scan-type: config
5959
scan-ref: ./docker
@@ -91,7 +91,7 @@ jobs:
9191
ref: ${{ inputs.branch }}
9292

9393
- name: Run Trivy vulnerability scanner with sarif output
94-
uses: aquasecurity/trivy-action@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5 # v0.30.0
94+
uses: aquasecurity/trivy-action@dc5a429b52fcf669ce959baa2c2dd26090d2a6c4 # v0.32.0
9595
with:
9696
scan-type: config
9797
scan-ref: ./manager
@@ -127,7 +127,7 @@ jobs:
127127
ref: ${{ inputs.branch }}
128128

129129
- name: Run Trivy vulnerability scanner with table output
130-
uses: aquasecurity/trivy-action@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5 # v0.30.0
130+
uses: aquasecurity/trivy-action@dc5a429b52fcf669ce959baa2c2dd26090d2a6c4 # v0.32.0
131131
with:
132132
scan-type: config
133133
scan-ref: ./docker
@@ -137,7 +137,7 @@ jobs:
137137
vuln-type: os,library
138138

139139
- name: Run Trivy manager vulnerability scanner with table output
140-
uses: aquasecurity/trivy-action@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5 # v0.30.0
140+
uses: aquasecurity/trivy-action@dc5a429b52fcf669ce959baa2c2dd26090d2a6c4 # v0.32.0
141141
with:
142142
scan-type: config
143143
scan-ref: ./manager

0 commit comments

Comments
 (0)