chore(deps): bump aquasecurity/trivy-action from 0.28.0 to 0.29.0

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.28.0 to 0.29.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@915b19b...18f2510) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
digitalservicebund · Nov 21, 2024 · 8877135 · 8877135
1 parent ae9726c
commit 8877135
Show file tree

Hide file tree

Showing 3 changed files with 4 additions and 4 deletions.
diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml
@@ -149,7 +149,7 @@ jobs:
         uses: digitalservicebund/github-actions-linter@3b941278d52936497add0afdebbf5c6e6ee8bd5d # v0.1.13
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0
+        uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # v0.29.0
         env:
           TRIVY_USERNAME: ${{ github.actor }}
           TRIVY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}

diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml
@@ -18,7 +18,7 @@ jobs:
       - name: validate github workflow files to have pinned versions
         uses: digitalservicebund/github-actions-linter@3b941278d52936497add0afdebbf5c6e6ee8bd5d # v0.1.13
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0
+        uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # v0.29.0
         env:
           TRIVY_USERNAME: ${{ github.actor }}
           TRIVY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}

diff --git a/.talismanrc b/.talismanrc
@@ -4,9 +4,9 @@ fileignoreconfig:
   - filename: .github/workflows/secrets-check.yml
     checksum: 20e55c98a60e39438b1843b02f289c5d729a781e95bdebf025d6e8768a1768d4
   - filename: .github/workflows/scan.yml
-    checksum: 105af2685ee0b0252ac491bc9bc8910ee02ce402ac18b85b4fe52933803c285c
+    checksum: 56c03270d0f7da1f59b171b410715859e4af700314e2264bfab730b6ecbdfb51
   - filename: .github/workflows/pipeline.yml
-    checksum: 378b97f14f8902ce1ee1b4ec0c67738a77fc469a7f6ae902dda2c812db752a75
+    checksum: 364ca1eda21af29628eb5b5d898eea782d2d36a7c9da5eb6dd0f92c45b0677f0
 scopeconfig:
   - scope: node
 allowed_patterns: