Skip to content

Commit 43f7206

Browse files
committed
chore: update actions/checkout and Trivy action versions in audit-terraform workflow
1 parent 2c8e517 commit 43f7206

1 file changed

Lines changed: 3 additions & 3 deletions

File tree

.github/workflows/audit-terraform.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -29,10 +29,10 @@ jobs:
2929

3030
steps:
3131
- name: Clone repo
32-
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
32+
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
3333

3434
- name: Run Trivy vulnerability scanner in IaC mode for Terraform
35-
uses: aquasecurity/trivy-action@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5 # v0.30.0
35+
uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 # v0.36.0
3636
with:
3737
scan-type: "config"
3838
scan-ref: "./infra/terraform"
@@ -45,6 +45,6 @@ jobs:
4545
trivyignores: "./infra/terraform/.trivyignore"
4646

4747
- name: Upload Trivy scan results to GitHub Security tab
48-
uses: github/codeql-action/upload-sarif@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3
48+
uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
4949
with:
5050
sarif_file: "trivy-terraform-results.sarif"

0 commit comments

Comments
 (0)