Merge pull request #233 from mathieu-benoit/dependabot/github_actions/aquasecurity/trivy-action-0.21.0

mathieu-benoit · web-flow · commit 02c7c0822312 · 2024-07-31T08:31:54.000-04:00
Bump aquasecurity/trivy-action from 0.16.1 to 0.21.0
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -67,7 +67,7 @@ jobs:
         run: |
           docker run -v /var/run/docker.sock:/var/run/docker.sock --rm goodwithtech/dockle:latest -ak KEY_SHA512 --exit-code 1 --exit-level fatal ${IMAGE_NAME}
       - name: run trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.16.1
+        uses: aquasecurity/trivy-action@0.21.0
         with:
           image-ref: ${{ env.IMAGE_NAME }}
           format: 'sarif'
