Upgrade Trivy action version in security workflow

tarilabs · web-flow · commit 385fbffa0145 · 2026-03-22T21:07:18.000+01:00
Updated Trivy action version to v0.35.0 for vulnerability scanning.
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -30,7 +30,7 @@ jobs:
           python -m pip install -e ".[dev]"
 
       - name: Run Trivy vulnerability scan
-        uses: aquasecurity/trivy-action@0.28.0
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0
         with:
           scan-type: 'fs'
           scan-ref: '.'
@@ -40,7 +40,7 @@ jobs:
           exit-code: '0'
 
       - name: Check for critical and high vulnerabilities
-        uses: aquasecurity/trivy-action@0.28.0
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0
         with:
           scan-type: 'fs'
           scan-ref: '.'
@@ -108,4 +108,4 @@ jobs:
           name: bandit-sarif-results
           path: results.sarif
           retention-days: 30
-        continue-on-error: true
+        continue-on-error: true
