Merge pull request #1327 from macedogm/chore/bump-aquasecurity-trivy-action-v0.35.0

macedogm · web-flow · commit 6a982c2c2190 · 2026-03-20T13:40:47.000-03:00
chore(ci): bump aquasecurity/trivy-action to v0.35.0
diff --git a/.github/workflows/scan.yaml b/.github/workflows/scan.yaml
@@ -35,7 +35,7 @@ jobs:
           push: false
           file: package/Dockerfile
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.34.1
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0
         env:
           TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db
           TRIVY_JAVA_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-java-db,public.ecr.aws/aquasecurity/trivy-java-db
