Pin Trivy

vasac · fryp · commit 7d1cc3710950 · 2026-03-25T11:39:35.000-04:00
diff --git a/.github/workflows/build-trivy.yaml b/.github/workflows/build-trivy.yaml
@@ -49,7 +49,7 @@ jobs:
         fetch-depth: 0
 
     - name: Run Trivy vulnerability scanner to scan repo
-      uses: aquasecurity/trivy-action@0.29.0
+      uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0
       with:
         scan-type: 'fs'
         exit-code: 1
