Skip to content

Commit eabd082

Browse files
committed
Bump Trivy to 0.69.2
Trivy had security incident on 1st March 2026 [1], resulting losing all GitHub Releases between 0.27.0-0.69.1. They then restored the latest as 0.69.2 [1] https://github.com/aquasecurity/trivy/discussions/10265 (cherry picked from commit 9144c9f)
1 parent 37574c6 commit eabd082

2 files changed

Lines changed: 2 additions & 2 deletions

File tree

.github/workflows/stackhpc-container-image-build.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -144,7 +144,7 @@ jobs:
144144
145145
- name: Install Trivy
146146
run: |
147-
curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sudo sh -s -- -b /usr/local/bin v0.49.0
147+
curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sudo sh -s -- -b /usr/local/bin v0.69.2
148148
149149
- name: Install yq
150150
run: |

tools/scan-images.sh

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -11,7 +11,7 @@ set -u
1111

1212
# Check that trivy is installed
1313
if ! trivy --version; then
14-
echo 'Please install trivy: curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin v0.49.1'
14+
echo 'Please install trivy: curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin v0.69.2'
1515
fi
1616

1717
# Clear any previous outputs

0 commit comments

Comments
 (0)