Aqua Security Trivy

Version updated for https://github.com/aquasecurity/trivy-action to version 0.34.1.

• This publisher is shown as ‘verified’ by GitHub.
• This action is used across all versions by 38,070 repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

Trivy Action is a GitHub Action that integrates the Trivy security scanner into CI/CD pipelines to automate vulnerability detection in container images, file systems, code repositories, and Infrastructure as Code. It simplifies the process of identifying critical security issues such as OS vulnerabilities, library flaws, and secrets in code, while supporting caching for efficient scans. This action is designed to improve security workflows by providing streamlined scanning capabilities directly within GitHub Actions.

Release notes

What’s Changed

• ci(test): add zizmor security linter for GitHub Actions by @DmitriyLewen in https://github.com/aquasecurity/trivy-action/pull/502

Full Changelog: https://github.com/aquasecurity/trivy-action/compare/0.34.0...0.34.1

• aquasecurity
• GitHub Actions