chore(deps): update aquasecurity/trivy-action action to v0.34.2

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
aquasecurity/trivy-action	action	minor	0.14.0 → 0.34.2

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

aquasecurity/trivy-action (aquasecurity/trivy-action)

v0.34.2

Compare Source

What's Changed

• feat: add YAML support for trivyignores by @​nikpivkin in #​508
• chore: bump default Trivy version to v0.69.2 by @​nick-the-nuke in #​513
• chore: bump Trivy version to v0.69.2 in test workflow and README by @​DmitriyLewen in #​515

New Contributors

• @​nick-the-nuke made their first contribution in #​513

Full Changelog: aquasecurity/trivy-action@0.34.1...0.34.2

v0.34.1

Compare Source

What's Changed

• ci(test): add zizmor security linter for GitHub Actions by @​DmitriyLewen in #​502

Full Changelog: aquasecurity/trivy-action@0.34.0...0.34.1

v0.34.0

Compare Source

What's Changed

• ci: use setup-bats in bump-trivy workflow by @​nikpivkin in #​494
• chore: update README by @​nikpivkin in #​493
• ci: install trivy in bump-trivy workflow and update tests by @​nikpivkin in #​495
• chore(deps): Update trivy to v0.68.1 by @​aqua-bot in #​496
• ci: use checks bundle v2 in sync workflow by @​nikpivkin in #​505
• chore(deps): Update trivy to v0.69.1 by @​aqua-bot in #​506

Full Changelog: aquasecurity/trivy-action@0.33.1...0.34.0

v0.33.1

Compare Source

What's Changed

• Update setup-trivy action to version v0.2.4 by @​martincostello in #​486

Full Changelog: aquasecurity/trivy-action@0.33.0...0.33.1

v0.33.0

Compare Source

What's Changed

• Update dependencies in README by @​ibakshay in #​378
• doc: correct sbom fs scan by @​yxtay in #​458
• Pin actions/cache by SHA by @​martincostello in #​480
• chore(ci): Add oras to correctly setup sync jobs by @​simar7 in #​482
• chore(deps): Update trivy to v0.65.0 by @​aqua-bot in #​481

New Contributors

• @​ibakshay made their first contribution in #​378
• @​yxtay made their first contribution in #​458
• @​martincostello made their first contribution in #​480

Full Changelog: aquasecurity/trivy-action@0.32.0...0.33.0

v0.32.0

Compare Source

What's Changed

• chore(deps): Update trivy to v0.64.1 by @​aqua-bot in #​474

Full Changelog: aquasecurity/trivy-action@0.31.0...0.32.0

v0.31.0

Compare Source

What's Changed

• docs: add info that unix:/ prefix is required for docker-host input by @​DmitriyLewen in #​455
• Fix Trivy action inputs leaking between invocations (#​422) by @​rvesse in #​454
• Pin aquasecuriy/setup-trivy to hash instead of tag by @​lhotari in #​456
• Bump Trivy version to fix GitHub actions by @​maximmasiutin in #​460
• refactor: use ubuntu 24.04 in example code by @​simar7 in #​465
• ci: fix workflow to bump Trivy by @​nikpivkin in #​466
• chore(deps): Update trivy to v0.63.0 by @​aqua-bot in #​467

New Contributors

• @​lhotari made their first contribution in #​456
• @​maximmasiutin made their first contribution in #​460
• @​aqua-bot made their first contribution in #​467

Full Changelog: aquasecurity/trivy-action@0.30.0...0.31.0

v0.30.0

Compare Source

What's Changed

• fix: Update default trivy version in README by @​derrix060 in #​444
• fix: typo in description of an input for action.yaml by @​yutatokoi in #​452
• Improve README/SBOM by @​AB-xdev in #​439
• chore: bump trivy to v0.60.0 by @​nikpivkin in #​453

New Contributors

• @​derrix060 made their first contribution in #​444
• @​yutatokoi made their first contribution in #​452
• @​AB-xdev made their first contribution in #​439

Full Changelog: aquasecurity/trivy-action@0.29.0...0.30.0

v0.29.0

Compare Source

What's Changed

• feat: Allow skipping setup by @​rvesse in #​414
• Fix oras command not found in "Update Trivy Cache" action by @​Tiryoh in #​413
• Update README.md by @​simar7 in #​420
• feat: add token for setup-trivy by @​DmitriyLewen in #​421
• fix: bump setup-trivy and add new contrib directory path info by @​DmitriyLewen in #​424
• docs: remove ignore-unfixed from IaC scan example by @​nikpivkin in #​429
• chore(deps): Bump trivy to v0.57.1 by @​simar7 in #​434

New Contributors

• @​rvesse made their first contribution in #​414
• @​Tiryoh made their first contribution in #​413

Full Changelog: aquasecurity/trivy-action@0.28.0...0.29.0

v0.28.0

Compare Source

What's Changed

• chore(deps): bump setup-trivy to v0.2.1 by @​DmitriyLewen in #​411

Full Changelog: aquasecurity/trivy-action@0.27.0...0.28.0

v0.27.0

Compare Source

What's Changed

• ci: use setup-trivy to install Trivy by @​DmitriyLewen in #​406
• chore: update description for scanners and format inputs by @​nikpivkin in #​407
• fix: set envs only when passed by @​knqyf263 in #​405

Full Changelog: aquasecurity/trivy-action@0.26.0...0.27.0

v0.26.0

Compare Source

What's Changed

• docs: add usage info about action/cache for trivy databases by @​DmitriyLewen in #​397
• feat: store artifacts in cache by default by @​knqyf263 in #​399

Full Changelog: aquasecurity/trivy-action@0.25.0...0.26.0

v0.25.0

Compare Source

What's Changed

• fix(Makefile): recursive option typo by @​chohner in #​371
• chore: use checks bundle snapshot from trivy-action by @​nikpivkin in #​388
• Upgrade GitHub actions by @​obounaim in #​374
• ci: sync trivy-checks version 1 by @​nikpivkin in #​398
• feat(trivy): Bump to support v0.56.1 by @​simar7 in #​387

New Contributors

• @​chohner made their first contribution in #​371
• @​obounaim made their first contribution in #​374

Full Changelog: aquasecurity/trivy-action@0.24.0...0.25.0

v0.24.0

Compare Source

What's Changed

• Upgrade trivy to v0.53.0 by @​Dr-DevOps in #​369

Full Changelog: aquasecurity/trivy-action@0.23.0...0.24.0

v0.23.0

Compare Source

What's Changed

• Upgrade trivy to v0.52.2 by @​Dr-DevOps in #​367

Full Changelog: aquasecurity/trivy-action@0.22.0...0.23.0

v0.22.0

Compare Source

What's Changed

• chore(docs): Reference the use of a pinned version by @​simar7 in #​356
• Upgrade trivy to v0.52.0 by @​Keralin in #​364

New Contributors

• @​Keralin made their first contribution in #​364

Full Changelog: aquasecurity/trivy-action@0.21.0...0.22.0

v0.21.0

Compare Source

What's Changed

• bump trivy version to v0.51.2 by @​Dr-DevOps in #​360

New Contributors

• @​Dr-DevOps made their first contribution in #​360

Full Changelog: aquasecurity/trivy-action@0.20.0...0.21.0

v0.20.0

Compare Source

What's Changed

• Make 'hide-progress' input working again by @​uridium in #​323
• feat(image): add --docker-host option for GH Action users by @​calinmarina in #​267
• Browse Trivy reports without GitHub Advanced Security license by @​uridium in #​328
• Fix docker host bug by @​admiralAwkbar in #​329
• Bump trivy version to v0.50.2 by @​pdefreitas in #​341
• update tests by @​nikpivkin in #​334
• bump trivy version to v0.51.1 by @​simar7 in #​353

New Contributors

• @​uridium made their first contribution in #​323
• @​calinmarina made their first contribution in #​267
• @​admiralAwkbar made their first contribution in #​329
• @​pdefreitas made their first contribution in #​341

Full Changelog: aquasecurity/trivy-action@0.19.0...0.20.0

v0.19.0

Compare Source

What's Changed

• bump trivy version to v0.50.1 by @​simar7 in #​324

Full Changelog: aquasecurity/trivy-action@0.18.0...0.19.0

v0.18.0

Compare Source

What's Changed

• docs(report): improve documentation around Using Trivy to generate SBOM and sending it to Github by @​Maxim-Durand in #​307
• fix: Refer to scan-ref when scan-type is "sbom" by @​cococig in #​314

New Contributors

• @​Maxim-Durand made their first contribution in #​307
• @​cococig made their first contribution in #​314

Full Changelog: aquasecurity/trivy-action@0.17.0...0.18.0

v0.17.0

Compare Source

What's Changed

• docs: add configuration info for flags not supported by inputs by @​DmitriyLewen in #​296
• fix: Fix skip-files and hide-progress options not being applied when using Sarif report format by @​simao-silva in #​297
• Upgrades Trivy from 0.48.1 to v0.49.0 by @​kderck in #​304

New Contributors

• @​simao-silva made their first contribution in #​297

Full Changelog: aquasecurity/trivy-action@0.16.1...0.17.0

v0.16.1

Compare Source

What's Changed

• Update Trivy to 0.48.1 by @​MartiUK in #​291
• docs: fix typo in README.md by @​hairmare in #​293

New Contributors

• @​MartiUK made their first contribution in #​291
• @​hairmare made their first contribution in #​293

Full Changelog: aquasecurity/trivy-action@0.16.0...0.16.1

v0.16.0

Compare Source

What's Changed

• Update to trivy version 0.48.0 by @​pragmaticivan in #​289

New Contributors

• @​pragmaticivan made their first contribution in #​289

Full Changelog: aquasecurity/trivy-action@0.15.0...0.16.0

v0.15.0

Compare Source

What's Changed

• feature(config): add terraform variable files by @​kderck in #​285

Full Changelog: aquasecurity/trivy-action@0.14.0...0.15.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.