Skip to content

Commit 3058b81

Browse files
committed
ci: bump trivy to v0.70.0 and setup-trivy to v0.2.6 to fix REL_5_8 CI
Two related Aqua Security artifacts were removed/GC'd, breaking the trivy-cache, licenses, secrets, and vulnerabilities jobs on every PR and push to REL_5_8: 1. The trivy binary v0.65.0 release artifact was removed by Aqua's usual GC of older releases, so `setup-trivy` cannot download it. 2. The aquasecurity/setup-trivy@v0.2.5 action wrapper version was itself removed from the marketplace; the action runner reports `Unable to resolve action 'aquasecurity/setup-trivy@v0.2.5'`. Bump both: - trivy binary v0.65.0 -> v0.70.0 (the version pinned on main) - aquasecurity/setup-trivy v0.2.5 -> v0.2.6 This supersedes #4465 (which only does the action wrapper bump) so it can be closed once this lands.
1 parent a92fc9f commit 3058b81

1 file changed

Lines changed: 2 additions & 2 deletions

File tree

.github/actions/trivy/action.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -39,7 +39,7 @@ inputs:
3939
The value "skip" fetches no Trivy data at all.
4040
4141
setup:
42-
default: v0.65.0,cache
42+
default: v0.70.0,cache
4343
description: >-
4444
How to install Trivy; one or more of version, none, or cache.
4545
The value "none" does not install Trivy at all.
@@ -84,7 +84,7 @@ runs:
8484
# Install Trivy as requested.
8585
# NOTE: `setup-trivy` can download a "latest" version but cannot cache it.
8686
- if: ${{ ! contains(fromJSON(steps.parsed.outputs.setup), 'none') }}
87-
uses: aquasecurity/setup-trivy@v0.2.5
87+
uses: aquasecurity/setup-trivy@v0.2.6
8888
with:
8989
cache: ${{ contains(fromJSON(steps.parsed.outputs.setup), 'cache') }}
9090
version: ${{ steps.parsed.outputs.version }}

0 commit comments

Comments
 (0)