Merge pull request #3319 from autonomys/bump-trivy-fix

bump latest trivy release and remove update db workflow
autonomys · Dec 21, 2024 · 788fd95 · 788fd95
2 parents cdc769b + 7fde491
commit 788fd95
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 36 deletions.
diff --git a/.github/workflows/trivy-security-scan.yml b/.github/workflows/trivy-security-scan.yml
@@ -48,6 +48,7 @@ jobs:
         if: github.event.client_payload.image != ''
         uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0
         with:
+          version: 'latest'
           image-ref: ${{ github.event.client_payload.image }}
           cache: 'true'
           format: "sarif"
@@ -58,8 +59,6 @@ jobs:
           severity: "CRITICAL,HIGH"
         env:
           TRIVY_CACHE_DIR: .cache/trivy
-          TRIVY_SKIP_DB_UPDATE: true
-          TRIVY_SKIP_JAVA_DB_UPDATE: true
 
       # Upload image scan results
       - name: Upload Trivy image scan results
@@ -72,6 +71,7 @@ jobs:
       - name: Run Trivy filesystem scan
         uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0
         with:
+          version: 'latest'
           scan-type: 'fs'
           cache: 'true'
           format: 'sarif'
@@ -80,8 +80,6 @@ jobs:
           ignore-unfixed: true
         env:
           TRIVY_CACHE_DIR: .cache/trivy
-          TRIVY_SKIP_DB_UPDATE: true
-          TRIVY_SKIP_JAVA_DB_UPDATE: true
 
       # Upload filesystem scan results
       - name: Upload Trivy filesystem scan results

diff --git a/.github/workflows/update-trivy-db.yml b/.github/workflows/update-trivy-db.yml