Skip to content

security: Update trivy-action to use sha for v0.35.0#228

Merged
k8s-ci-robot merged 1 commit intomainfrom
security/update-trivy-action-v0.35.0
Mar 23, 2026
Merged

security: Update trivy-action to use sha for v0.35.0#228
k8s-ci-robot merged 1 commit intomainfrom
security/update-trivy-action-v0.35.0

Conversation

@Priyankasaggu11929
Copy link
Copy Markdown
Member

@Priyankasaggu11929 Priyankasaggu11929 commented Mar 22, 2026

Description

This PR updates aquasecurity/trivy-action to address security vulnerabilities.

Changes

  • Updates from mutable reference (@master/@main/old tags) to SHA-pinned version
  • Now using: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 (v0.35.0)

References

@Priyankasaggu11929
security: Update trivy-action to v0.35.0
bff31de 
Updates aquasecurity/trivy-action from mutable references to SHA-pinned
version to address security vulnerabilities.

- Updates to v0.35.0 (57a97c7e)
- Pins to specific SHA for immutability
- Addresses issue: aquasecurity/trivy#10425

Signed-off-by: Priyanka Saggu <priyankasaggu11929@gmail.com>
@k8s-ci-robot k8s-ci-robot added the do-not-merge/release-note-label-needed Indicates that a PR should not merge because it's missing one of the release note labels. label Mar 22, 2026
@k8s-ci-robot k8s-ci-robot added size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. labels Mar 22, 2026
@Priyankasaggu11929
Copy link
Copy Markdown
Member Author

Priyankasaggu11929 commented Mar 22, 2026

@carlbraganza, @pohly, @saad-ali, @msau42 - Please merge the PR on an urgent basis. Thanks!

@Priyankasaggu11929 Priyankasaggu11929 added release-note-none Denotes a PR that doesn't merit a release note. and removed do-not-merge/release-note-label-needed Indicates that a PR should not merge because it's missing one of the release note labels. labels Mar 22, 2026
@Priyankasaggu11929 Priyankasaggu11929 mentioned this pull request Mar 22, 2026
Open
49 tasks
@Priyankasaggu11929 Priyankasaggu11929 force-pushed the security/update-trivy-action-v0.35.0 branch from 52643cf to bff31de Compare March 22, 2026 22:20
Rakshith-R
Rakshith-R approved these changes Mar 23, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@Rakshith-R Rakshith-R left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm
/approve

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Mar 23, 2026
@k8s-ci-robot
Copy link
Copy Markdown
Contributor

k8s-ci-robot commented Mar 23, 2026

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: Priyankasaggu11929, Rakshith-R

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Mar 23, 2026
@k8s-ci-robot k8s-ci-robot merged commit 1ab306d into main Mar 23, 2026
14 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Rakshith-R Rakshith-R Rakshith-R approved these changes

@carlbraganza carlbraganza Awaiting requested review from carlbraganza

@xing-yang xing-yang Awaiting requested review from xing-yang

Assignees

@Rakshith-R Rakshith-R

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. release-note-none Denotes a PR that doesn't merit a release note. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Priyankasaggu11929 @k8s-ci-robot @Rakshith-R