Merge pull request #226 from authzed/dependabot/github_actions/github…

…-actions-72af60186e Bump bufbuild/buf-setup-action from 1.46.0 to 1.47.2 in the github-actions group
authzed · Nov 19, 2024 · fdbe0da · fdbe0da
2 parents a858961 + 68ac5c1
commit fdbe0da
Show file tree

Hide file tree

Showing 3 changed files with 6 additions and 3 deletions.
diff --git a/.github/workflows/automatic-api-update.yaml b/.github/workflows/automatic-api-update.yaml
@@ -23,7 +23,7 @@ jobs:
         run: |
           echo "Update status: $UPDATED_STATUS"
       - name: "Install buf"
-        uses: "bufbuild/buf-setup-action@v1.46.0"
+        uses: "bufbuild/buf-setup-action@v1.47.2"
         with:
           github_token: "${{ secrets.GITHUB_TOKEN }}"
         if: "steps.buf-update.outputs.updated == 'true'"

diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml
@@ -1,6 +1,6 @@
 ---
 name: "Lint"
-on: # yamllint disable-line rule:truthy
+on:  # yamllint disable-line rule:truthy
   push:
     branches:
       - "main"
@@ -71,6 +71,9 @@ jobs:
           format: "sarif"
           output: "trivy-results.sarif"
           severity: "CRITICAL"
+        env:
+          TRIVY_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-db"
+          TRIVY_JAVA_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-java-db"
       - name: "Upload Trivy scan results to GitHub Security tab"
         uses: "github/codeql-action/upload-sarif@v3"
         with:

diff --git a/.github/workflows/manual-api-update.yaml b/.github/workflows/manual-api-update.yaml
@@ -27,7 +27,7 @@ jobs:
         run: |
           echo "Update status: $UPDATED_STATUS"
       - name: "Install buf"
-        uses: "bufbuild/buf-setup-action@v1.46.0"
+        uses: "bufbuild/buf-setup-action@v1.47.2"
         with:
           github_token: "${{ secrets.GITHUB_TOKEN }}"
         if: "steps.buf-update.outputs.updated == 'true'"