Trust Diff

PASS

aquasecurity/setup-trivy

e07451d → 9cf04f1

No trust posture change. 4 pre-existing issues remain.

View details

9cf04f1 docs: use commit SHA and update Trivy version to v0.68.2: (#26) by DmitriyLewen 4 months ago GitHub

4 existing issues unchanged

GitHub Actions shell injection via attacker-controlled context

Full trust profile: e07451d (parent) Full trust profile: 9cf04f1

Code Changes

1 file +11 -11

modified README.md +11 -11

@@ -7,17 +7,17 @@ Set up your GitHub Actions workflow with a specific version of [Trivy](https://g

7 7 # ...

8 8 steps:

9 9 - name: Install Trivy

10 - uses: aquasecurity/[email protected]

10 + uses: aquasecurity/setup-trivy@e07451d2e059ed86c2870430ea286b3a9e0bf241

11 11 ```

12 12

13 13 ## Install a specific Trivy version

14 14 ```yaml

15 15 # ...

16 16 steps:

17 17 - name: Install Trivy

18 - uses: aquasecurity/[email protected]

18 + uses: aquasecurity/setup-trivy@e07451d2e059ed86c2870430ea286b3a9e0bf241

19 19 with:

20 - version: v0.61.0

20 + version: v0.68.2

21 21 ```

22 22

23 23 ## Caching

@@ -34,9 +34,9 @@ If you want to enable caching for Linux and MacOS runners, set the `cache` input

34 34 ```yaml

35 35 steps:

36 36 - name: Install Trivy

37 - uses: aquasecurity/[email protected]

37 + uses: aquasecurity/setup-trivy@e07451d2e059ed86c2870430ea286b3a9e0bf241

38 38 with:

39 - version: v0.61.0

39 + version: v0.68.2

40 40 cache: true

41 41 ```

42 42

@@ -50,9 +50,9 @@ To enable caching for Windows runner or if you need to change the Trivy installa

50 50 ```yaml

51 51 steps:

52 52 - name: Install Trivy

53 - uses: aquasecurity/[email protected]

53 + uses: aquasecurity/setup-trivy@e07451d2e059ed86c2870430ea286b3a9e0bf241

54 54 with:

55 - version: v0.61.0

55 + version: v0.68.2

56 56 cache: true

57 57 path: "./bins"

58 58 ```

@@ -67,9 +67,9 @@ To properly install Trivy, you need to populate `token` from a secret or another

67 67 ```yaml

68 68 steps:

69 69 - name: Install Trivy

70 - uses: aquasecurity/[email protected]

70 + uses: aquasecurity/setup-trivy@e07451d2e059ed86c2870430ea286b3a9e0bf241

71 71 with:

72 - version: v0.61.0

72 + version: v0.68.2

73 73 cache: true

74 74 token: ${{ secrets.GITHUB_PAT }}

75 75 ```

@@ -82,8 +82,8 @@ Set `github-server-url` to change the mirror of Trivy repository.

82 82 ```yaml

83 83 steps:

84 84 - name: Install Trivy

85 - uses: aquasecurity/[email protected]

85 + uses: aquasecurity/setup-trivy@e07451d2e059ed86c2870430ea286b3a9e0bf241

86 86 with:

87 - version: v0.61.0

87 + version: v0.68.2

88 88 github-server-url: 'https://example.com'

89 89 ```