chore(ci): bump aquasecurity/trivy-action from 0.18.0 to 0.20.0

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.18.0 to 0.20.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@062f259...b2933f5) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
dnwe · May 8, 2024 · 727b0e5 · 727b0e5
1 parent 05f9419
commit 727b0e5
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -104,14 +104,14 @@ jobs:
       # against the sigstore community Fulcio instance.
       run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}
     - name: Generate SBOM with Trivy
-      uses: aquasecurity/trivy-action@062f2592684a31eb3aa050cc61e7ca1451cecd3d # v0.18.0
+      uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561 # v0.20.0
       with:
         image-ref: ${{ steps.meta.outputs.tags }}
         scan-type: image
         format: cyclonedx
         output: trivy-sbom.json
     - name: Scan Image with Trivy
-      uses: aquasecurity/trivy-action@062f2592684a31eb3aa050cc61e7ca1451cecd3d # v0.18.0
+      uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561 # v0.20.0
       with:
         scan-ref: trivy-sbom.json
         scan-type: sbom