chore(deps): bump aquasecurity/trivy-action from 0.14.0 to 0.23.0

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.14.0 to 0.23.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@0.14.0...0.23.0) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
eclipse-tractusx · Jun 17, 2024 · a65eeae · a65eeae
1 parent 2a95669
commit a65eeae
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/.github/workflows/trivy-test-images.yml b/.github/workflows/trivy-test-images.yml
@@ -86,7 +86,7 @@ jobs:
 
 
       - name: Run Trivy Table
-        uses: aquasecurity/trivy-action@0.19.0
+        uses: aquasecurity/trivy-action@0.23.0
         with:
           scan-type: 'image'
           image-ref: 'backend:latest'

diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
@@ -18,7 +18,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@2b6a709cf9c4025c5438138008beaddbb02086f0 # v0.14.0
+        uses: aquasecurity/trivy-action@7c2007bcb556501da015201bcba5aa14069b74e2 # v0.23.0
         with:
           image-ref: "tractusx/vas-country-risk:latest"
           format: "sarif"
@@ -42,7 +42,7 @@ jobs:
     steps:
       # Pull image from Docker Hub and run Trivy vulnerability scanner
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@2b6a709cf9c4025c5438138008beaddbb02086f0 # v0.14.0
+        uses: aquasecurity/trivy-action@7c2007bcb556501da015201bcba5aa14069b74e2 # v0.23.0
         with:
           image-ref: "tractusx/vas-country-risk-backend:latest"
           format: "sarif"