From d283af99136f23fcc2e68707225e58b5a9f28b30 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Oct 2025 11:11:21 +0000 Subject: [PATCH] build(deps): bump anchore/scan-action from 7.0.0 to 7.0.1 Bumps [anchore/scan-action](https://github.com/anchore/scan-action) from 7.0.0 to 7.0.1. - [Release notes](https://github.com/anchore/scan-action/releases) - [Changelog](https://github.com/anchore/scan-action/blob/main/RELEASE.md) - [Commits](https://github.com/anchore/scan-action/compare/f6601287cdb1efc985d6b765bbf99cb4c0ac29d8...9e8428812aebf5a6a5fc3fdd55de39d1c79b8b12) --- updated-dependencies: - dependency-name: anchore/scan-action dependency-version: 7.0.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .../workflows/serverless-init-vulnerability-scan.yml | 4 ++-- .github/workflows/vulnerability-scan.yml | 10 +++++----- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/.github/workflows/serverless-init-vulnerability-scan.yml b/.github/workflows/serverless-init-vulnerability-scan.yml index b03f0f956..c9aace78a 100644 --- a/.github/workflows/serverless-init-vulnerability-scan.yml +++ b/.github/workflows/serverless-init-vulnerability-scan.yml @@ -35,7 +35,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Scan latest serverless-init image with grype - uses: anchore/scan-action@f6601287cdb1efc985d6b765bbf99cb4c0ac29d8 # v7.0.0 + uses: anchore/scan-action@9e8428812aebf5a6a5fc3fdd55de39d1c79b8b12 # v7.0.1 with: image: "datadog/serverless-init:latest" only-fixed: true @@ -44,7 +44,7 @@ jobs: output-format: table - name: Scan latest-alpine serverless-init image with grype - uses: anchore/scan-action@f6601287cdb1efc985d6b765bbf99cb4c0ac29d8 # v7.0.0 + uses: anchore/scan-action@9e8428812aebf5a6a5fc3fdd55de39d1c79b8b12 # v7.0.1 with: image: "datadog/serverless-init:latest-alpine" only-fixed: true diff --git a/.github/workflows/vulnerability-scan.yml b/.github/workflows/vulnerability-scan.yml index 7cec36b7a..90f6cffa5 100644 --- a/.github/workflows/vulnerability-scan.yml +++ b/.github/workflows/vulnerability-scan.yml @@ -36,7 +36,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Scan latest release image with grype - uses: anchore/scan-action@f6601287cdb1efc985d6b765bbf99cb4c0ac29d8 # v7.0.0 + uses: anchore/scan-action@9e8428812aebf5a6a5fc3fdd55de39d1c79b8b12 # v7.0.1 with: image: "public.ecr.aws/datadog/lambda-extension:latest" only-fixed: true @@ -45,7 +45,7 @@ jobs: output-format: table - name: Scan latest-alpine release image with grype - uses: anchore/scan-action@f6601287cdb1efc985d6b765bbf99cb4c0ac29d8 # v7.0.0 + uses: anchore/scan-action@9e8428812aebf5a6a5fc3fdd55de39d1c79b8b12 # v7.0.1 with: image: "public.ecr.aws/datadog/lambda-extension:latest-alpine" only-fixed: true @@ -100,7 +100,7 @@ jobs: format: table - name: Scan amd64 image with grype - uses: anchore/scan-action@f6601287cdb1efc985d6b765bbf99cb4c0ac29d8 # v7.0.0 + uses: anchore/scan-action@9e8428812aebf5a6a5fc3fdd55de39d1c79b8b12 # v7.0.1 with: image: "datadog/build-lambda-extension-amd64:${{ env.VERSION }}" only-fixed: true @@ -109,7 +109,7 @@ jobs: output-format: table - name: Scan arm64 image with grype - uses: anchore/scan-action@f6601287cdb1efc985d6b765bbf99cb4c0ac29d8 # v7.0.0 + uses: anchore/scan-action@9e8428812aebf5a6a5fc3fdd55de39d1c79b8b12 # v7.0.1 with: image: "datadog/build-lambda-extension-arm64:${{ env.VERSION }}" only-fixed: true @@ -118,7 +118,7 @@ jobs: output-format: table - name: Scan binary files with grype - uses: anchore/scan-action@f6601287cdb1efc985d6b765bbf99cb4c0ac29d8 # v7.0.0 + uses: anchore/scan-action@9e8428812aebf5a6a5fc3fdd55de39d1c79b8b12 # v7.0.1 with: path: go/src/github.com/DataDog/datadog-lambda-extension/.layers only-fixed: true