Skip to content

Fix/vulnerability build#2998

Merged
strailov merged 2 commits intoeclipse-hawkbit:masterfrom
boschglobal:fix/vulnerability_build
Apr 6, 2026
Merged

Fix/vulnerability build#2998
strailov merged 2 commits intoeclipse-hawkbit:masterfrom
boschglobal:fix/vulnerability_build

Conversation

@strailov
Copy link
Copy Markdown
Contributor

@strailov strailov commented Apr 6, 2026

No description provided.

strailov added 2 commits April 6, 2026 18:47
@strailov
Fix vulnerability build
8815e83 
Signed-off-by: strailov <Stanislav.Trailov@bosch.io>
@strailov
add scans dir before scanning
4b32fa1 
Signed-off-by: strailov <Stanislav.Trailov@bosch.io>
@strailov strailov merged commit 951a898 into eclipse-hawkbit:master Apr 6, 2026
2 of 4 checks passed
@strailov strailov deleted the fix/vulnerability_build branch April 6, 2026 16:31
avgustinmm added a commit that referenced this pull request Apr 7, 2026
@avgustinmm @strailov @dependabot
Sync with fixes in master (#2999)
0f4d86f 
* Migrate trivy scan to trivy-action (#2992)

* Migrate trivy scan to trivy-action

* Revert to hard versions approach, but not only with major ref

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>

---------

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>

* Fix vulnerability build (#2997)

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>

* Fix/vulnerability build (#2998)

* Fix vulnerability build

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>

* add scans dir before scanning

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>

---------

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>

* Fix stop rollout when using PostgreSQL (#2996)

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>

* Bump docker/login-action from 4.0.0 to 4.1.0 (#2994)

Bumps [docker/login-action](https://github.com/docker/login-action) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](docker/login-action@v4.0.0...v4.1.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-version: 4.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

---------

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Stanislav Trailov <stanislav.trailov@bosch.io>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@strailov