Bump aquasecurity/trivy-action from 0.25.0 to 0.28.0 (#213)

* Bump aquasecurity/trivy-action from 0.25.0 to 0.28.0 Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.25.0 to 0.28.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@f781cce...915b19b) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Update ci.yml --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Cameron <561860+wallies@users.noreply.github.com>
cjrh · Oct 15, 2024 · ea109a5 · ea109a5
1 parent b1604fe
commit ea109a5
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -66,6 +66,7 @@ jobs:
           ghcr.io:443
           github.com:443
           pkg-containers.githubusercontent.com:443
+          objects.githubusercontent.com:443
 
     - name: Checkout the code
       uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v2
@@ -75,7 +76,7 @@ jobs:
 
     - name: Run vulnerability scanner in repo mode
       if: github.actor != 'dependabot[bot]'
-      uses: aquasecurity/trivy-action@f781cce5aab226378ee181d764ab90ea0be3cdd8 # 0.2.2
+      uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # 0.2.2
       with:
         scan-type: 'fs'
         format: 'sarif'
@@ -86,7 +87,7 @@ jobs:
 
     - name: Run vulnerability scanner in repo mode
       if: github.actor == 'dependabot[bot]'
-      uses: aquasecurity/trivy-action@f781cce5aab226378ee181d764ab90ea0be3cdd8 # 0.2.2
+      uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # 0.2.2
       with:
         scan-type: 'fs'
         exit-code: 1
@@ -165,4 +166,4 @@ jobs:
     - name: Perform CodeQL Analysis
       uses: github/codeql-action/analyze@f779452ac5af1c261dce0346a8f964149f49322b # v2.2.11
       with:
-        category: "/language:${{matrix.language}}"
+        category: "/language:${{matrix.language}}"