chore: pin gcr.io/distroless/static to a hash value

[nilo19]

What type of PR is this?

/kind cleanup

What this PR does / why we need it:

chore: pin gcr.io/distroless/static to a hash value

Which issue(s) this PR fixes:

Fixes #

Special notes for your reviewer:

Does this PR introduce a user-facing change?

NONE

Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:

[nilo19]

This is changed automatically by ide.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: nilo19

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [nilo19]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[feiskyer]

do we have trivy scanner running for images built from this Dockerfile?

[nilo19]

No we don't, I will add one.

[nilo19]

Added, please take a look.

[github-advanced-security]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

[feiskyer]

/retest

[feiskyer]

/lgtm

[nilo19]

/retest

[nilo19]

/retest

[nilo19]

/cherrypick release-1.28

[k8s-infra-cherrypick-robot]

@nilo19: #5290 failed to apply on top of branch "release-1.28":

Applying: chore: pin gcr.io/distroless/static to a hash value
Using index info to reconstruct a base tree...
M	.github/workflows/trivy.yaml
M	pkg/azclient/client-gen/go.mod
M	pkg/azclient/client-gen/go.sum
Falling back to patching base and 3-way merge...
Auto-merging pkg/azclient/client-gen/go.sum
CONFLICT (content): Merge conflict in pkg/azclient/client-gen/go.sum
Auto-merging pkg/azclient/client-gen/go.mod
Auto-merging .github/workflows/trivy.yaml
CONFLICT (content): Merge conflict in .github/workflows/trivy.yaml
error: Failed to merge in the changes.
hint: Use 'git am --show-current-patch=diff' to see the failed patch
Patch failed at 0001 chore: pin gcr.io/distroless/static to a hash value
When you have resolved this problem, run "git am --continue".
If you prefer to skip this patch, run "git am --skip" instead.
To restore the original branch and stop patching, run "git am --abort".

In response to this:

/cherrypick release-1.28

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.