Skip to content

Commit 7c954ba

Browse files
Update aquasecurity/trivy-action action to v0.29.0 (#83)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
1 parent a6fd3b3 commit 7c954ba

2 files changed

Lines changed: 8 additions & 8 deletions

File tree

.github/workflows/pr-operator.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -262,15 +262,15 @@ jobs:
262262
load: true
263263

264264
- name: Run Trivy vulnerability scanner
265-
uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # 0.17.0
265+
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
266266
with:
267267
scan-type: image
268268
image-ref: ${{ env.OPERATOR_IMAGE_REPOSITORY }}:latest-${{ steps.setup-build-step.outputs.platform_os }}-${{ steps.setup-build-step.outputs.platform_arch }}
269269
format: "cosign-vuln"
270270
output: "operator-cosignvuln.json"
271271

272272
- name: Run Trivy SBOM generator
273-
uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # 0.17.0
273+
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
274274
with:
275275
scan-type: image
276276
image-ref: ${{ env.OPERATOR_IMAGE_REPOSITORY }}:latest-${{ steps.setup-build-step.outputs.platform_os }}-${{ steps.setup-build-step.outputs.platform_arch }}
@@ -387,15 +387,15 @@ jobs:
387387
load: true
388388

389389
- name: Run Trivy vulnerability scanner
390-
uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # 0.17.0
390+
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
391391
with:
392392
scan-type: image
393393
image-ref: ${{ env.BUNDLE_IMAGE_REPOSITORY }}:latest-${{ steps.setup-build-step.outputs.platform_os }}-${{ steps.setup-build-step.outputs.platform_arch }}
394394
format: "cosign-vuln"
395395
output: "bundle-cosignvuln.json"
396396

397397
- name: Run Trivy SBOM generator
398-
uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # 0.17.0
398+
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
399399
with:
400400
scan-type: image
401401
image-ref: ${{ env.BUNDLE_IMAGE_REPOSITORY }}:latest-${{ steps.setup-build-step.outputs.platform_os }}-${{ steps.setup-build-step.outputs.platform_arch }}

.github/workflows/release-operator.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -337,7 +337,7 @@ jobs:
337337
cosign sign --yes ${IMAGE_URI}
338338
339339
- name: Run Trivy vulnerability scanner
340-
uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # 0.17.0
340+
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
341341
env:
342342
TRIVY_USERNAME: ${{ secrets.REGISTRY_USERNAME }}
343343
TRIVY_PASSWORD: ${{ secrets.REGISTRY_PASSWORD }}
@@ -348,7 +348,7 @@ jobs:
348348
output: "cosign-vuln.json"
349349

350350
- name: Run Trivy SBOM generator
351-
uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # 0.17.0
351+
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
352352
env:
353353
TRIVY_USERNAME: ${{ secrets.REGISTRY_USERNAME }}
354354
TRIVY_PASSWORD: ${{ secrets.REGISTRY_PASSWORD }}
@@ -568,7 +568,7 @@ jobs:
568568
cosign sign --yes ${IMAGE_URI}
569569
570570
- name: Run Trivy vulnerability scanner
571-
uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # 0.17.0
571+
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
572572
env:
573573
TRIVY_USERNAME: ${{ secrets.REGISTRY_USERNAME }}
574574
TRIVY_PASSWORD: ${{ secrets.REGISTRY_PASSWORD }}
@@ -579,7 +579,7 @@ jobs:
579579
output: "cosign-vuln.json"
580580

581581
- name: Run Trivy SBOM generator
582-
uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # 0.17.0
582+
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # 0.29.0
583583
env:
584584
TRIVY_USERNAME: ${{ secrets.REGISTRY_USERNAME }}
585585
TRIVY_PASSWORD: ${{ secrets.REGISTRY_PASSWORD }}

0 commit comments

Comments
 (0)