From ac6124214ff4ed1db9388bfa42b98916fae9bc92 Mon Sep 17 00:00:00 2001 From: Nipuna Ranasinghe Date: Wed, 9 Oct 2024 17:42:31 +0530 Subject: [PATCH] Downgrade trivy action # This is done as a workaround for https://github.com/aquasecurity/trivy-action/issues/404 --- .github/workflows/central-publish-template.yml | 2 +- .github/workflows/release-package-connector-template.yml | 2 +- .github/workflows/release-package-template.yml | 2 +- .github/workflows/s4hana-release-template.yml | 2 +- .github/workflows/s4hana-trivy-scan.yml | 2 +- .github/workflows/trivy-scan-template.yml | 2 +- 6 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/central-publish-template.yml b/.github/workflows/central-publish-template.yml index 74da38cb..94af261d 100644 --- a/.github/workflows/central-publish-template.yml +++ b/.github/workflows/central-publish-template.yml @@ -43,7 +43,7 @@ jobs: run: mkdir -p ballerina/lib - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@master + uses: aquasecurity/trivy-action@v0.23.0 with: scan-type: "rootfs" scan-ref: "/github/workspace/ballerina/lib" diff --git a/.github/workflows/release-package-connector-template.yml b/.github/workflows/release-package-connector-template.yml index 8cb8b8eb..15df51ba 100644 --- a/.github/workflows/release-package-connector-template.yml +++ b/.github/workflows/release-package-connector-template.yml @@ -68,7 +68,7 @@ jobs: run: mkdir -p ballerina/lib - name: Run Trivy Vulnerability Scanner - uses: aquasecurity/trivy-action@master + uses: aquasecurity/trivy-action@v0.23.0 with: scan-type: "rootfs" scan-ref: "/github/workspace/ballerina/lib" diff --git a/.github/workflows/release-package-template.yml b/.github/workflows/release-package-template.yml index 0687fd5d..a2da9a2c 100644 --- a/.github/workflows/release-package-template.yml +++ b/.github/workflows/release-package-template.yml @@ -50,7 +50,7 @@ jobs: run: mkdir -p ballerina/lib - name: Run Trivy Vulnerability Scanner - uses: aquasecurity/trivy-action@master + uses: aquasecurity/trivy-action@v0.23.0 with: scan-type: "rootfs" scan-ref: "/github/workspace/ballerina/lib" diff --git a/.github/workflows/s4hana-release-template.yml b/.github/workflows/s4hana-release-template.yml index e4f97f1a..b2bd8801 100644 --- a/.github/workflows/s4hana-release-template.yml +++ b/.github/workflows/s4hana-release-template.yml @@ -60,7 +60,7 @@ jobs: ./gradlew build -x test - name: Run Trivy Vulnerability Scanner - uses: aquasecurity/trivy-action@master + uses: aquasecurity/trivy-action@v0.23.0 with: scan-type: "rootfs" scan-ref: "/github/workspace/ballerina" diff --git a/.github/workflows/s4hana-trivy-scan.yml b/.github/workflows/s4hana-trivy-scan.yml index ff1cf377..be70ac85 100644 --- a/.github/workflows/s4hana-trivy-scan.yml +++ b/.github/workflows/s4hana-trivy-scan.yml @@ -26,7 +26,7 @@ jobs: run: ./gradlew build -x test -x :${{ inputs.hana-connector-group }}-examples:build -x:${{ inputs.hana-connector-group }}-sanitation:build - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@master + uses: aquasecurity/trivy-action@v0.23.0 with: scan-type: "rootfs" scan-ref: "/github/workspace/ballerina" diff --git a/.github/workflows/trivy-scan-template.yml b/.github/workflows/trivy-scan-template.yml index 8b4ba3ef..e881c8d6 100644 --- a/.github/workflows/trivy-scan-template.yml +++ b/.github/workflows/trivy-scan-template.yml @@ -31,7 +31,7 @@ jobs: run: mkdir -p ballerina/lib - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@master + uses: aquasecurity/trivy-action@v0.23.0 with: scan-type: "rootfs" scan-ref: "/github/workspace/ballerina/lib"