From 3f0b43d0fa78e2e4d4a488a64951690eddd22230 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 26 Oct 2023 08:49:24 +0000 Subject: [PATCH] Bump the ci group with 1 update Bumps the ci group with 1 update: [docker/scout-action](https://github.com/docker/scout-action). - [Release notes](https://github.com/docker/scout-action/releases) - [Commits](https://github.com/docker/scout-action/compare/914f29b95fa18690ce41fdee98cf892d78f8c5c0...4e9ac4df44fb56797da111fce8185f7fbffd5a09) --- updated-dependencies: - dependency-name: docker/scout-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci ... Signed-off-by: dependabot[bot] --- .github/workflows/scan.yaml | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/.github/workflows/scan.yaml b/.github/workflows/scan.yaml index 3144c86..98c346f 100644 --- a/.github/workflows/scan.yaml +++ b/.github/workflows/scan.yaml @@ -155,49 +155,49 @@ jobs: username: ${{ secrets.DOCKER_USER }} password: ${{ secrets.DOCKER_PASSWORD }} - name: Scan source-controller image - uses: docker/scout-action@914f29b95fa18690ce41fdee98cf892d78f8c5c0 # v1.0.8 + uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09 # v1.0.9 with: command: cves image: 'ghcr.io/weaveworks/source-controller:${{ needs.get-image-version.outputs.sc }}' only-severities: critical,high exit-code: true - name: Scan kustomize-controller image - uses: docker/scout-action@914f29b95fa18690ce41fdee98cf892d78f8c5c0 # v1.0.8 + uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09 # v1.0.9 with: command: cves image: 'ghcr.io/weaveworks/kustomize-controller:${{ needs.get-image-version.outputs.kc }}' only-severities: critical,high exit-code: true - name: Scan helm-controller image - uses: docker/scout-action@914f29b95fa18690ce41fdee98cf892d78f8c5c0 # v1.0.8 + uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09 # v1.0.9 with: command: cves image: 'ghcr.io/weaveworks/helm-controller:${{ needs.get-image-version.outputs.hc }}' only-severities: critical,high exit-code: true - name: Scan notification-controller image - uses: docker/scout-action@914f29b95fa18690ce41fdee98cf892d78f8c5c0 # v1.0.8 + uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09 # v1.0.9 with: command: cves image: 'ghcr.io/weaveworks/notification-controller:${{ needs.get-image-version.outputs.nc }}' only-severities: critical,high exit-code: true - name: Scan image-reflector-controller image - uses: docker/scout-action@914f29b95fa18690ce41fdee98cf892d78f8c5c0 # v1.0.8 + uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09 # v1.0.9 with: command: cves image: 'ghcr.io/weaveworks/image-reflector-controller:${{ needs.get-image-version.outputs.irc }}' only-severities: critical,high exit-code: true - name: Scan image-automation-controller image - uses: docker/scout-action@914f29b95fa18690ce41fdee98cf892d78f8c5c0 # v1.0.8 + uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09 # v1.0.9 with: command: cves image: 'ghcr.io/weaveworks/image-automation-controller:${{ needs.get-image-version.outputs.iac }}' only-severities: critical,high exit-code: true - name: Scan flux2 image - uses: docker/scout-action@914f29b95fa18690ce41fdee98cf892d78f8c5c0 # v1.0.8 + uses: docker/scout-action@4e9ac4df44fb56797da111fce8185f7fbffd5a09 # v1.0.9 with: command: cves image: 'ghcr.io/weaveworks/flux-cli:${{ needs.get-image-version.outputs.flux2 }}'