From bbfc6712a21e8575275e6e48cd4062af91416d34 Mon Sep 17 00:00:00 2001 From: Emterry <123941245+Emterry@users.noreply.github.com> Date: Tue, 22 Oct 2024 16:43:10 +0100 Subject: [PATCH 1/3] update scan workflow (#81) --- .github/workflows/scan-image.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/scan-image.yml b/.github/workflows/scan-image.yml index 761d6b8..57b03b1 100644 --- a/.github/workflows/scan-image.yml +++ b/.github/workflows/scan-image.yml @@ -31,6 +31,9 @@ jobs: - name: Scan id: scan uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0 + env: + TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2 + TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1 with: image-ref: ghcr.io/${{ github.repository }}:${{ github.sha }} severity: HIGH,CRITICAL From 02a4a79f72f3ed2804198912ae187da870970dc8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 22 Oct 2024 15:46:20 +0000 Subject: [PATCH 2/3] :dependabot: github-actions(deps): Bump ministryofjustice/github-actions from 18.3.0 to 18.3.1 (#78) --- .github/workflows/test.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index a3e7423..cf58389 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -21,7 +21,7 @@ jobs: - name: Set Up Container Structure Test id: setup_container_structure_test - uses: ministryofjustice/github-actions/setup-container-structure-test@196c43f5f0038e573491ab114de070665ae47672 # v18.3.0 + uses: ministryofjustice/github-actions/setup-container-structure-test@9f2e1064389dae6ca4098470b933da7042675e59 # v18.3.1 - name: Test id: test From 033067ed6ec30e67e2594b959664b978dd934ec6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 22 Oct 2024 15:48:09 +0000 Subject: [PATCH 3/3] :dependabot: github-actions(deps): Bump anchore/sbom-action from 0.17.4 to 0.17.5 (#79) --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1f44c73..f4a6473 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -50,7 +50,7 @@ jobs: - name: Generate SBOM id: generate_sbom - uses: anchore/sbom-action@8d0a6505bf28ced3e85154d13dc6af83299e13f1 # v0.17.4 + uses: anchore/sbom-action@1ca97d9028b51809cf6d3c934c3e160716e1b605 # v0.17.5 with: image: ghcr.io/${{ github.repository }}:${{ github.ref_name }} format: cyclonedx-json