Skip to content

Commit 7a8aac1

Browse files
dependabot[bot]dependabot[bot]
authored
ci: bump the github-actions group with 2 updates
Bumps the github-actions group with 2 updates: [contributor-assistant/github-action](https://github.com/contributor-assistant/github-action) and [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action). Updates `contributor-assistant/github-action` from 2.3.2 to 2.4.0 - [Release notes](https://github.com/contributor-assistant/github-action/releases) - [Commits](contributor-assistant/github-action@v2.3.2...v2.4.0) Updates `aquasecurity/trivy-action` from 0.19.0 to 0.20.0 - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@d710430...b2933f5) --- updated-dependencies: - dependency-name: contributor-assistant/github-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
1 parent 6182ee9 commit 7a8aac1

File tree

2 files changed

+2
-2
lines changed

2 files changed

+2
-2
lines changed

.github/workflows/contrib.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -34,7 +34,7 @@ jobs:
3434
steps:
3535
- name: cla
3636
if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the CLA Document and I hereby sign the CLA') || github.event_name == 'pull_request_target'
37-
uses: contributor-assistant/github-action@v2.3.2
37+
uses: contributor-assistant/github-action@v2.4.0
3838
env:
3939
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
4040
# the below token should have repo scope and must be manually added by you in the repository's secret

.github/workflows/security.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -114,7 +114,7 @@ jobs:
114114
echo "image=$(cat "$image_job")" >> $GITHUB_OUTPUT
115115
116116
- name: Run Trivy vulnerability scanner
117-
uses: aquasecurity/trivy-action@d710430a6722f083d3b36b8339ff66b32f22ee55
117+
uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561
118118
with:
119119
image-ref: ${{ steps.build.outputs.image }}
120120
format: sarif

0 commit comments

Comments
 (0)