Skip to content

Commit

Permalink
Bump aquasecurity/trivy-action in /.github/workflows
Browse files Browse the repository at this point in the history
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.20.0 to 0.21.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](aquasecurity/trivy-action@0.20.0...0.21.0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
  • Loading branch information
dependabot[bot] authored May 27, 2024
1 parent c19146d commit f6fb8e1
Show file tree
Hide file tree
Showing 6 changed files with 7 additions and 7 deletions.
2 changes: 1 addition & 1 deletion .github/workflows/consul-template.yml
Original file line number Diff line number Diff line change
Expand Up @@ -42,7 +42,7 @@ jobs:
run: make tag

- name: Run trivy scan
uses: aquasecurity/trivy-action@0.20.0
uses: aquasecurity/trivy-action@0.21.0
with:
image-ref: constantin07/consul-template:latest
format: sarif
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/docker-nginx-proxy.yml
Original file line number Diff line number Diff line change
Expand Up @@ -41,7 +41,7 @@ jobs:
run: make tag

- name: Run trivy scan
uses: aquasecurity/trivy-action@0.20.0
uses: aquasecurity/trivy-action@0.21.0
with:
image-ref: 'docker.io/constantin07/docker-nginx-proxy:latest'
security-checks: 'vuln,secret,config'
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/golang-terratest.yml
Original file line number Diff line number Diff line change
Expand Up @@ -82,15 +82,15 @@ jobs:
run: make build

- name: Run trivy scan (console output)
uses: aquasecurity/trivy-action@0.20.0
uses: aquasecurity/trivy-action@0.21.0
with:
image-ref: constantin07/golang-terratest:${{ needs.get-version.outputs.version }}
ignore-unfixed: true
severity: 'LOW,MEDIUM,HIGH,CRITICAL'
format: table

- name: Run trivy scan (report upload)
uses: aquasecurity/trivy-action@0.20.0
uses: aquasecurity/trivy-action@0.21.0
with:
image-ref: constantin07/golang-terratest:${{ needs.get-version.outputs.version }}
ignore-unfixed: true
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/tool-box.yml
Original file line number Diff line number Diff line change
Expand Up @@ -68,7 +68,7 @@ jobs:
run: docker buildx build --load --platform 'linux/arm64' -t ${{ env.IMAGE_NAME }}-arm64 .

- name: Run trivy scan
uses: aquasecurity/trivy-action@0.20.0
uses: aquasecurity/trivy-action@0.21.0
with:
image-ref: ${{ env.IMAGE_NAME }}
format: sarif
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/vault-agent.yml
Original file line number Diff line number Diff line change
Expand Up @@ -85,7 +85,7 @@ jobs:
-t ${{ env.REPOSITORY }}:${{ env.VAULT_VERSION }}-arm64 .
- name: Run trivy scan
uses: aquasecurity/trivy-action@0.20.0
uses: aquasecurity/trivy-action@0.21.0
with:
image-ref: ${{ env.REPOSITORY }}:${{ env.VAULT_VERSION }}
format: sarif
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/vault.yml
Original file line number Diff line number Diff line change
Expand Up @@ -85,7 +85,7 @@ jobs:
-t ${{ env.REPOSITORY }}:${{ env.VAULT_VERSION }}-arm64 .
- name: Run trivy scan
uses: aquasecurity/trivy-action@0.20.0
uses: aquasecurity/trivy-action@0.21.0
with:
image-ref: ${{ env.REPOSITORY }}:${{ env.VAULT_VERSION }}
format: 'sarif'
Expand Down

0 comments on commit f6fb8e1

Please sign in to comment.