update trivy action

tsaarni · Nov 5, 2024 · b2f8d8a · b2f8d8a
1 parent c486817
commit b2f8d8a
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
@@ -13,12 +13,12 @@ jobs:
 
       # https://github.com/aquasecurity/trivy-action
       - name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@0.16.1
+        uses: aquasecurity/trivy-action@0.28.0
         with:
           scan-type: "fs"
           format: "sarif"
           output: "trivy-results.sarif"
-          scanners: "vuln,secret,config"
+          scanners: "vuln,secret,misconfig"
           severity: "CRITICAL,HIGH"
 
       - name: Upload Trivy scan results to GitHub Security tab