ci: bump the github-actions group with 2 updates

Bumps the github-actions group with 2 updates: [crate-ci/typos](https://github.com/crate-ci/typos) and [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action). Updates `crate-ci/typos` from 1.18.0 to 1.18.2 - [Release notes](https://github.com/crate-ci/typos/releases) - [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md) - [Commits](crate-ci/typos@v1.18.0...v1.18.2) Updates `aquasecurity/trivy-action` from 0.16.1 to 0.17.0 - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@d43c1f1...84384bd) --- updated-dependencies: - dependency-name: crate-ci/typos dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
coder · matifali · Feb 13, 2024 · Feb 12, 2024 · Feb 12, 2024 · 062d399bc34cad5284520ce36d030c9117cca35c
commit 062d399bc34cad5284520ce36d030c9117cca35c
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -141,7 +141,7 @@ jobs:
 
       # Check for any typos
       - name: Check for typos
-        uses: crate-ci/typos@v1.18.0
+        uses: crate-ci/typos@v1.18.2
         with:
           config: .github/workflows/typos.toml
 

diff --git a/.github/workflows/security.yaml b/.github/workflows/security.yaml
@@ -122,7 +122,7 @@ jobs:
           image_name: ${{ steps.build.outputs.image }}
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@d43c1f16c00cfd3978dde6c07f4bbcf9eb6993ca
+        uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef
         with:
           image-ref: ${{ steps.build.outputs.image }}
           format: sarif