ci: Update trivy action to known good version to address vulnerability. (#11)

jamesiarmes · web-flow · commit 712f0b189fcd · 2026-03-24T11:40:08.000-04:00
diff --git a/.github/workflows/trivy.yaml b/.github/workflows/trivy.yaml
@@ -17,7 +17,8 @@ jobs:
       - name: Checkout source code
         uses: actions/checkout@v6
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.33.1
+        # v0.35.0
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1
         with:
           format: sarif
           output: trivy-results.sarif
