From f0f0a9ad58e17be6ffe7383177a79a9c55f5de16 Mon Sep 17 00:00:00 2001 From: Carl-Robert Linnupuu Date: Sun, 3 Nov 2024 00:33:25 +0000 Subject: [PATCH] chore: update Trivy action to version 0.28.0 --- .github/workflows/staging.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/staging.yml b/.github/workflows/staging.yml index b1590da..07145b6 100644 --- a/.github/workflows/staging.yml +++ b/.github/workflows/staging.yml @@ -22,7 +22,7 @@ jobs: # Build and dry-run maven-publish (metadata and pom, but no signing) run: ./gradlew build generateMetadataFileForMavenJavaPublication generatePomFileForMavenJavaPublication --no-daemon - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@master + uses: aquasecurity/trivy-action@0.28.0 with: ignore-unfixed: true scan-ref: 'build/publications/mavenJava'