Merge pull request #7245 from NipunaRanasinghe/main

NipunaRanasinghe · web-flow · commit d30e24ab25ed · 2024-10-09T17:50:34.000+05:30
Downgrade trivy action version
diff --git a/.github/workflows/central-publish-template.yml b/.github/workflows/central-publish-template.yml
@@ -43,7 +43,7 @@ jobs:
         run: mkdir -p ballerina/lib
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina/lib"
diff --git a/.github/workflows/release-package-connector-template.yml b/.github/workflows/release-package-connector-template.yml
@@ -68,7 +68,7 @@ jobs:
         run: mkdir -p ballerina/lib
 
       - name: Run Trivy Vulnerability Scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina/lib"
diff --git a/.github/workflows/release-package-template.yml b/.github/workflows/release-package-template.yml
@@ -50,7 +50,7 @@ jobs:
         run: mkdir -p ballerina/lib
 
       - name: Run Trivy Vulnerability Scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina/lib"
diff --git a/.github/workflows/s4hana-release-template.yml b/.github/workflows/s4hana-release-template.yml
@@ -60,7 +60,7 @@ jobs:
           ./gradlew build -x test 
 
       - name: Run Trivy Vulnerability Scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina"
diff --git a/.github/workflows/s4hana-trivy-scan.yml b/.github/workflows/s4hana-trivy-scan.yml
@@ -26,7 +26,7 @@ jobs:
         run: ./gradlew build -x test -x :${{ inputs.hana-connector-group }}-examples:build -x:${{ inputs.hana-connector-group }}-sanitation:build
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina"
diff --git a/.github/workflows/trivy-scan-template.yml b/.github/workflows/trivy-scan-template.yml
@@ -31,7 +31,7 @@ jobs:
         run: mkdir -p ballerina/lib
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina/lib"
