Skip to content

chore(deps): bump aquasecurity/trivy-action from 0.35.0 to 0.36.0#315

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/aquasecurity/trivy-action-0.36.0
Open

chore(deps): bump aquasecurity/trivy-action from 0.35.0 to 0.36.0#315
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/aquasecurity/trivy-action-0.36.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 23, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps aquasecurity/trivy-action from 0.35.0 to 0.36.0.

Release notes

Sourced from aquasecurity/trivy-action's releases.

v0.36.0

What's Changed

New Contributors

Full Changelog: aquasecurity/trivy-action@v0.35.0...v0.36.0

Commits
  • ed142fd chore: update action version to v0.36.0 in examples (#563)
  • dea62cf chore(deps): Update trivy to v0.70.0 (#559)
  • 128d9a8 chore: use GitHub Actions as git commit author in bump-trivy workflow (#561)
  • 876cf04 Upgrade Trivy action version from 0.33.1 to 0.35.0 fixes #549 (#548)
  • dada784 Fix typo in GOOGLE_APPLICATION_CREDENTIALS env var name (#547)
  • 4a2deec fix: use portable shebang in entrypoint.sh (#545)
  • 1994662 chore(deps): bump the actions group with 5 updates (#558)
  • 6b36659 chore: add zizmor config (#557)
  • 316aa5a ci: add dependabot config (#556)
  • 264c9c5 test: use pinned digests for trivy-db, trivy-java-db and trivy-checks (#555)
  • Additional commits viewable in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot requested a review from a team as a code owner April 23, 2026 03:53
@dependabot dependabot Bot force-pushed the dependabot/github_actions/aquasecurity/trivy-action-0.36.0 branch 2 times, most recently from 0d6329a to f02e8ce Compare April 29, 2026 13:07
@dependabot dependabot Bot force-pushed the dependabot/github_actions/aquasecurity/trivy-action-0.36.0 branch from f02e8ce to 13dedfc Compare May 7, 2026 15:10
@dependabot dependabot Bot force-pushed the dependabot/github_actions/aquasecurity/trivy-action-0.36.0 branch 3 times, most recently from 1732f54 to 95a3a1e Compare May 21, 2026 08:00
@dependabot
chore(deps): bump aquasecurity/trivy-action from 0.35.0 to 0.36.0
b51cc2d 
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.35.0 to 0.36.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](aquasecurity/trivy-action@57a97c7...ed142fd)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/github_actions/aquasecurity/trivy-action-0.36.0 branch from 95a3a1e to b51cc2d Compare May 22, 2026 15:49
@sonarqubecloud

sonarqubecloud Bot commented May 22, 2026

Copy link
Copy Markdown

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@github-actions

github-actions Bot commented May 22, 2026

Copy link
Copy Markdown

Code Coverage

Package Line Rate Branch Rate Health
Matching 74% 49%
SUI.DBS.Response.Logger.Core 93% 72%
SUI.Client.Core 94% 91%
Shared 92% 84%
SUI.Client.StorageProcessJob 97% 80%
External 45% 32%
suiw 100% 100%
AppHost 100% 100%
Summary 80% (3789 / 4745) 62% (996 / 1596)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependabot github-actions

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants