Merge pull request #238 from nirmata/dependabot/github_actions/aquase…

…curity/trivy-action-0.24.0

chore(deps): Bump aquasecurity/trivy-action from 0.20.0 to 0.24.0

.github/workflows/image-build.yaml

@@ -30,7 +30,7 @@ jobs:
       - name: docker build
         run: VERSION=${{ github.ref_name }} make docker-build
       - name: Trivy Scan Image
-        uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561 # v0.20.0
+        uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # v0.24.0
         with:
           scan-type: 'fs'
           ignore-unfixed: true

.github/workflows/image-publish.yaml

@@ -34,7 +34,7 @@ jobs:
           username: ${{ github.repository_owner }}
           password: ${{ secrets.GITHUB_TOKEN }}
       - name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561 # v0.20.0
+        uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # v0.24.0
         with:
           scan-type: "fs"
           ignore-unfixed: true

.github/workflows/nightly-scan.yaml

@@ -54,7 +54,7 @@ jobs:
           exit-code: '1'
 
       - name: Convert trivy json file to tabular form
-        uses: aquasecurity/trivy-action@0.12.0
+        uses: aquasecurity/trivy-action@0.24.0
         if: always() && steps.trivy-scan.conclusion == 'failure'
         with:
           scan-type: convert

.github/workflows/release.yaml

@@ -30,7 +30,7 @@ jobs:
           username: ${{ github.repository_owner }}
           password: ${{ secrets.GITHUB_TOKEN }}
       - name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561 # v0.20.0
+        uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # v0.24.0
         with:
           scan-type: "fs"
           ignore-unfixed: true