Skip to content

Commit 9abed78

Browse files
renovate[bot]renovate[bot]
authored
chore(deps): pin dependencies (#664)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
1 parent 11ae33f commit 9abed78

1 file changed

Lines changed: 3 additions & 3 deletions

File tree

.github/workflows/build.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -349,7 +349,7 @@ jobs:
349349
merge-multiple: true
350350
- name: Run Trivy vulnerability scanner
351351
if: ${{ github.event_name == 'pull_request' }}
352-
uses: aquasecurity/[email protected]
352+
uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # 0.33.1
353353
with:
354354
input: "images/${{ matrix.image }}.tar"
355355
format: "sarif"
@@ -364,15 +364,15 @@ jobs:
364364
password: ${{ secrets.GITHUB_TOKEN }}
365365
- name: Run Trivy vulnerability scanner
366366
if: ${{ github.event_name != 'pull_request' }}
367-
uses: aquasecurity/[email protected]
367+
uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # 0.33.1
368368
with:
369369
image-ref: "ghcr.io/jeboehm/${{ matrix.image }}:latest"
370370
format: "sarif"
371371
output: "trivy-results.sarif"
372372
severity: "CRITICAL,HIGH"
373373
- name: Upload Trivy scan results to GitHub Security tab
374374
if: always()
375-
uses: github/codeql-action/upload-sarif@v4
375+
uses: github/codeql-action/upload-sarif@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v4
376376
with:
377377
sarif_file: "trivy-results.sarif"
378378
category: "${{ matrix.image }}"

0 commit comments

Comments
 (0)