Bump aquasecurity/trivy-action from 0.17.0 to 0.19.0

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.17.0 to 0.19.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@0.17.0...0.19.0) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
tkhom3 · Apr 1, 2024 · 008b8d6 · 008b8d6
1 parent 5d494d5
commit 008b8d6
Show file tree

Hide file tree

Showing 4 changed files with 7 additions and 7 deletions.
diff --git a/.github/workflows/scan-with-trivy-config-only.yml b/.github/workflows/scan-with-trivy-config-only.yml
@@ -14,7 +14,7 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Trivy Misconfiguration - IaC
-      uses: aquasecurity/trivy-action@0.17.0
+      uses: aquasecurity/trivy-action@0.19.0
       with:
         scan-type: config
         hide-progress: false

diff --git a/.github/workflows/scan-with-trivy-pr-config-only.yml b/.github/workflows/scan-with-trivy-pr-config-only.yml
@@ -14,7 +14,7 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Trivy Misconfiguration - IaC
-      uses: aquasecurity/trivy-action@0.17.0
+      uses: aquasecurity/trivy-action@0.19.0
       with:
         scan-type: config
         severity: CRITICAL,HIGH,MEDIUM

diff --git a/.github/workflows/scan-with-trivy-pr.yml b/.github/workflows/scan-with-trivy-pr.yml
@@ -23,7 +23,7 @@ jobs:
           docker build -t docker.io/${{ steps.string.outputs.lowercase }}:${{ github.sha }} .
 
     - name: Run Trivy image vulnerability scanner
-      uses: aquasecurity/trivy-action@0.17.0
+      uses: aquasecurity/trivy-action@0.19.0
       with:
         image-ref: 'docker.io/${{ steps.string.outputs.lowercase }}:${{ github.sha }}'
         scan-type: image
@@ -56,7 +56,7 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Trivy Misconfiguration - IaC
-      uses: aquasecurity/trivy-action@0.17.0
+      uses: aquasecurity/trivy-action@0.19.0
       with:
         scan-type: config
         severity: CRITICAL,HIGH,MEDIUM

diff --git a/.github/workflows/scan-with-trivy.yml b/.github/workflows/scan-with-trivy.yml
@@ -20,7 +20,7 @@ jobs:
           docker build -t docker.io/${{ steps.string.outputs.lowercase }}:${{ github.sha }} .
           
     - name: Run Trivy vulnerability scanner
-      uses: aquasecurity/trivy-action@0.17.0
+      uses: aquasecurity/trivy-action@0.19.0
       with:
         image-ref: 'docker.io/${{ steps.string.outputs.lowercase }}:${{ github.sha }}'
         scan-type: image
@@ -39,7 +39,7 @@ jobs:
         category: 'Trivy Image Vulnerability'
 
     - name: Trivy Misconfiguration - IaC
-      uses: aquasecurity/trivy-action@0.17.0
+      uses: aquasecurity/trivy-action@0.19.0
       with:
         scan-type: config
         severity: CRITICAL,HIGH,MEDIUM
@@ -62,7 +62,7 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Run Trivy in GitHub SBOM mode and submit results to Dependency Graph
-      uses: aquasecurity/trivy-action@0.17.0
+      uses: aquasecurity/trivy-action@0.19.0
       with:
         scan-type: 'fs'
         format: 'github'