diff --git a/.github/workflows/analysis.yml b/.github/workflows/analysis.yml index 9c219295..06a0565a 100644 --- a/.github/workflows/analysis.yml +++ b/.github/workflows/analysis.yml @@ -67,7 +67,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Run Trivy vulnerability scanner in repo mode - uses: aquasecurity/trivy-action@0.28.0 + uses: aquasecurity/trivy-action@0.29.0 with: format: "sarif" output: "trivy-results.sarif" diff --git a/.github/workflows/scheduled.yml b/.github/workflows/scheduled.yml index a4b906ad..ddccf3af 100644 --- a/.github/workflows/scheduled.yml +++ b/.github/workflows/scheduled.yml @@ -20,7 +20,7 @@ jobs: name: [backend, frontend] steps: - name: ZAP Scan - uses: zaproxy/action-full-scan@v0.11.0 + uses: zaproxy/action-full-scan@v0.12.0 with: allow_issue_writing: true artifact_name: "zap_${{ matrix.name }}"