From c69e1f5de228a8f714a84acb4ec1427bb443186c Mon Sep 17 00:00:00 2001 From: mitchell Date: Mon, 6 Jul 2026 11:08:17 -0400 Subject: [PATCH] Updated aquasecurity/trivy version for CVE scanning. --- .github/workflows/build.yml | 2 +- .github/workflows/scan.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 68628f0a56..2e4cc1517d 100755 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -404,7 +404,7 @@ jobs: merge-multiple: true - name: Scan for CVEs - uses: aquasecurity/trivy-action@0.72.0 + uses: aquasecurity/trivy-action@0.36.0 env: TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db with: diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml index 7c560d80ce..eee996daca 100644 --- a/.github/workflows/scan.yml +++ b/.github/workflows/scan.yml @@ -35,7 +35,7 @@ jobs: uses: actions/download-artifact@v4 - name: Scan binaries - uses: aquasecurity/trivy-action@0.72.0 + uses: aquasecurity/trivy-action@0.36.0 with: scan-type: rootfs scan-ref: '.'