fix: bump aquasecurity/trivy-action from 0.35.0 to 0.36.0

dependabot[bot] · web-flow · commit 6708ae8aba5c · 2026-04-27T06:06:22.000Z
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.35.0 to 0.36.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@0.35.0...v0.36.0) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-version: 0.36.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/docker-build-and-scan.yaml b/.github/workflows/docker-build-and-scan.yaml
@@ -41,7 +41,7 @@ jobs:
           push: true
           tags: docker.io/${{ env.DOCKER_TAGS }}
       - name: Run Trivy vulnerability scanner (multi-arch manifest)
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           image-ref: docker.io/${{ env.DOCKER_TAGS }}
           format: 'table'
