Merge pull request #5693 from karmada-io/dependabot/github_actions/aq…

…uasecurity/trivy-action-0.27.0

build(deps): bump aquasecurity/trivy-action from 0.24.0 to 0.27.0

.github/workflows/ci-image-scanning-on-schedule.yml

@@ -47,15 +47,15 @@ jobs:
  export REGISTRY="docker.io/karmada"
  make image-${{ matrix.target }}
  - name: Run Trivy vulnerability scanner
- uses: aquasecurity/trivy-action@0.24.0
+ uses: aquasecurity/trivy-action@0.27.0
  with:
  image-ref: 'docker.io/karmada/${{ matrix.target }}:${{ matrix.karmada-version }}'
  format: 'sarif'
  ignore-unfixed: true
  vuln-type: 'os,library'
  output: '${{ matrix.target }}:${{ matrix.karmada-version }}.trivy-results.sarif'
  - name: display scan results
- uses: aquasecurity/trivy-action@0.24.0
+ uses: aquasecurity/trivy-action@0.27.0
  with:
  image-ref: 'docker.io/karmada/${{ matrix.target }}:${{ matrix.karmada-version }}'
  format: 'table'

.github/workflows/ci-image-scanning.yaml

@@ -42,15 +42,15 @@ jobs:
  export REGISTRY="docker.io/karmada"
  make image-${{ matrix.target }}
  - name: Run Trivy vulnerability scanner
- uses: aquasecurity/trivy-action@0.24.0
+ uses: aquasecurity/trivy-action@0.27.0
  with:
  image-ref: 'docker.io/karmada/${{ matrix.target }}:latest'
  format: 'sarif'
  ignore-unfixed: true
  vuln-type: 'os,library'
  output: 'trivy-results.sarif'
  - name: display scan results
- uses: aquasecurity/trivy-action@0.24.0
+ uses: aquasecurity/trivy-action@0.27.0
  with:
  image-ref: 'docker.io/karmada/${{ matrix.target }}:latest'
  format: 'table'

.github/workflows/release.yml

@@ -167,7 +167,7 @@ jobs:
  steps:
  - uses: actions/checkout@v4
  - name: Generate sbom for karmada file system
- uses: aquasecurity/trivy-action@0.24.0
+ uses: aquasecurity/trivy-action@0.27.0
  with:
  scan-type: 'fs'
  format: 'spdx'