Bump aquasecurity/trivy-action in /.github/workflows

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.17.0 to 0.18.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@0.17.0...0.18.0) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Constantin07 · Mar 4, 2024 · 296f2e8 · 296f2e8
1 parent 2af1c55
commit 296f2e8
Show file tree

Hide file tree

Showing 5 changed files with 6 additions and 6 deletions.
diff --git a/.github/workflows/consul-template.yml b/.github/workflows/consul-template.yml
@@ -42,7 +42,7 @@ jobs:
         run: make tag
 
       - name: Run trivy scan
-        uses: aquasecurity/trivy-action@0.17.0
+        uses: aquasecurity/trivy-action@0.18.0
         with:
           image-ref: constantin07/consul-template:latest
           format: sarif

diff --git a/.github/workflows/docker-nginx-proxy.yml b/.github/workflows/docker-nginx-proxy.yml
@@ -41,7 +41,7 @@ jobs:
         run: make tag
 
       - name: Run trivy scan
-        uses: aquasecurity/trivy-action@0.17.0
+        uses: aquasecurity/trivy-action@0.18.0
         with:
           image-ref: 'docker.io/constantin07/docker-nginx-proxy:latest'
           security-checks: 'vuln,secret,config'

diff --git a/.github/workflows/golang-terratest.yml b/.github/workflows/golang-terratest.yml
@@ -82,15 +82,15 @@ jobs:
         run: make build
 
       - name: Run trivy scan (console output)
-        uses: aquasecurity/trivy-action@0.17.0
+        uses: aquasecurity/trivy-action@0.18.0
         with:
           image-ref: constantin07/golang-terratest:${{ needs.get-version.outputs.version }}
           ignore-unfixed: true
           severity: 'LOW,MEDIUM,HIGH,CRITICAL'
           format: table
 
       - name: Run trivy scan (report upload)
-        uses: aquasecurity/trivy-action@0.17.0
+        uses: aquasecurity/trivy-action@0.18.0
         with:
           image-ref: constantin07/golang-terratest:${{ needs.get-version.outputs.version }}
           ignore-unfixed: true

diff --git a/.github/workflows/tool-box.yml b/.github/workflows/tool-box.yml
@@ -68,7 +68,7 @@ jobs:
         run: docker buildx build --load --platform 'linux/arm64' -t ${{ env.IMAGE_NAME }}-arm64 .
 
       - name: Run trivy scan
-        uses: aquasecurity/trivy-action@0.17.0
+        uses: aquasecurity/trivy-action@0.18.0
         with:
           image-ref: ${{ env.IMAGE_NAME }}
           format: sarif

diff --git a/.github/workflows/vault.yml b/.github/workflows/vault.yml
@@ -85,7 +85,7 @@ jobs:
           -t ${{ env.REPOSITORY }}:${{ env.VAULT_VERSION }}-arm64 .
 
       - name: Run trivy scan
-        uses: aquasecurity/trivy-action@0.17.0
+        uses: aquasecurity/trivy-action@0.18.0
         with:
           image-ref: ${{ env.REPOSITORY }}:${{ env.VAULT_VERSION }}
           format: 'sarif'