Skip to content

Commit

Permalink
chore(ci): bump aquasecurity/trivy-action from 0.17.0 to 0.18.0 (#82)
Browse files Browse the repository at this point in the history
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.17.0 to 0.18.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](aquasecurity/trivy-action@0.17.0...0.18.0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
dependabot[bot] authored Feb 29, 2024
1 parent a52452f commit a5d2829
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 7 deletions.
8 changes: 4 additions & 4 deletions .github/workflows/release-container.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -124,7 +124,7 @@ jobs:
DOCKER_CONTENT_TRUST: 1

- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@0.17.0
uses: aquasecurity/trivy-action@0.18.0
with:
image-ref: '${{ inputs.image }}:${{ steps.meta.outputs.version }}'
format: 'json'
Expand All @@ -133,7 +133,7 @@ jobs:
output: 'trivy.json'

- name: Convert trivy results to sarif
uses: aquasecurity/trivy-action@0.17.0
uses: aquasecurity/trivy-action@0.18.0
with:
image-ref: trivy.json
scan-type: 'convert'
Expand Down Expand Up @@ -181,7 +181,7 @@ jobs:
TAGS: ${{ steps.meta.outputs.tags }}

- name: Convert trivy results to CycloneDX
uses: aquasecurity/trivy-action@0.17.0
uses: aquasecurity/trivy-action@0.18.0
with:
image-ref: trivy.json
scan-type: 'convert'
Expand All @@ -197,7 +197,7 @@ jobs:
if: github.event_name != 'pull_request' && startsWith(github.event.ref, 'refs/tags/v')

- name: Convert trivy results to cosign-vuln
uses: aquasecurity/trivy-action@0.17.0
uses: aquasecurity/trivy-action@0.18.0
with:
image-ref: trivy.json
scan-type: 'convert'
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/schedule-trivy.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ jobs:
uses: sigstore/cosign-installer@v3.4.0

- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@0.17.0
uses: aquasecurity/trivy-action@0.18.0
with:
image-ref: ${{ inputs.image-ref }}
timeout: ${{ inputs.timeout }}
Expand All @@ -46,7 +46,7 @@ jobs:
output: 'trivy.json'

- name: Convert trivy results to sarif
uses: aquasecurity/trivy-action@0.17.0
uses: aquasecurity/trivy-action@0.18.0
with:
image-ref: trivy.json
scan-type: 'convert'
Expand All @@ -64,7 +64,7 @@ jobs:
sarif_file: 'trivy.sarif'

- name: Convert trivy results to cosign-vuln
uses: aquasecurity/trivy-action@0.17.0
uses: aquasecurity/trivy-action@0.18.0
with:
image-ref: trivy.json
scan-type: 'convert'
Expand Down

0 comments on commit a5d2829

Please sign in to comment.