From b2fc369e08e8f6a632c1d8a31bdf910e08138196 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 12 Feb 2024 10:36:56 -0800
Subject: [PATCH] chore(deps): update aquasecurity/trivy-action action to
 v0.17.0 (#1264)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
|
[aquasecurity/trivy-action](https://togithub.com/aquasecurity/trivy-action)
| action | minor | `0.16.1` -> `0.17.0` |

---

### Release Notes

<details>
<summary>aquasecurity/trivy-action (aquasecurity/trivy-action)</summary>

###
[`v0.17.0`](https://togithub.com/aquasecurity/trivy-action/releases/tag/0.17.0)

[Compare
Source](https://togithub.com/aquasecurity/trivy-action/compare/0.16.1...0.17.0)

##### What's Changed

- docs: add configuration info for flags not supported by inputs by
[@&#8203;DmitriyLewen](https://togithub.com/DmitriyLewen) in
[https://github.com/aquasecurity/trivy-action/pull/296](https://togithub.com/aquasecurity/trivy-action/pull/296)
- fix: Fix `skip-files` and `hide-progress` options not being applied
when using Sarif report format by
[@&#8203;simao-silva](https://togithub.com/simao-silva) in
[https://github.com/aquasecurity/trivy-action/pull/297](https://togithub.com/aquasecurity/trivy-action/pull/297)
- Upgrades Trivy from 0.48.1 to v0.49.0 by
[@&#8203;kderck](https://togithub.com/kderck) in
[https://github.com/aquasecurity/trivy-action/pull/304](https://togithub.com/aquasecurity/trivy-action/pull/304)

##### New Contributors

- [@&#8203;simao-silva](https://togithub.com/simao-silva) made their
first contribution in
[https://github.com/aquasecurity/trivy-action/pull/297](https://togithub.com/aquasecurity/trivy-action/pull/297)

**Full Changelog**:
https://github.com/aquasecurity/trivy-action/compare/0.16.1...0.17.0

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/newrelic/helm-charts).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xNzMuMCIsInVwZGF0ZWRJblZlciI6IjM3LjE3My4wIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 .github/workflows/security.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/security.yaml b/.github/workflows/security.yaml
index 9d8ee5895..3b6896bc0 100644
--- a/.github/workflows/security.yaml
+++ b/.github/workflows/security.yaml
@@ -14,7 +14,7 @@ jobs:
         uses: actions/checkout@v4
 
       - name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@0.16.1
+        uses: aquasecurity/trivy-action@0.17.0
         if: ${{ ! github.event.schedule }}  # Do not run inline checks when running periodically
         with:
           scan-type: fs
@@ -23,7 +23,7 @@ jobs:
           severity: 'HIGH,CRITICAL'
 
       - name: Run Trivy vulnerability scanner sarif output
-        uses: aquasecurity/trivy-action@0.16.1
+        uses: aquasecurity/trivy-action@0.17.0
         if: ${{ github.event.schedule }}  # Generate sarif when running periodically
         with:
           scan-type: fs