deps(actions): bump aquasecurity/trivy-action

dependabot[bot] · web-flow · commit fcaaeb40d497 · 2026-04-28T07:14:20.000Z
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from e368e328979b113139d6f9068e03accaed98a518 to ed142fd0673e97e23eac54620cfb913e5ce36c25. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@e368e32...ed142fd) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-version: ed142fd0673e97e23eac54620cfb913e5ce36c25 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/secure-go.yml b/.github/workflows/secure-go.yml
@@ -197,7 +197,7 @@ jobs:
 
       # ---- Trivy: filesystem vulnerability scanning ----
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@e368e328979b113139d6f9068e03accaed98a518 # 0.34.1
+        uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 # 0.34.1
         continue-on-error: true  # Don't fail workflow if Trivy has issues
         with:
           scan-type: 'fs'
