mirror of
https://github.com/kubereboot/kured.git
synced 2026-04-07 10:26:56 +00:00
fe114765ef
Without this, the CI will fail to use trivy. Multiple reasons: - We used shas + tags in the past. This was to guarantee the version matches the release. Sadly that behaviour has changed since september 2025, and dependabot does not update anymore the sha pinned actions unless the version is also in comment. This will be fixed in another PR. - Trivy releases had to be republished since trivy security incident. - Old releases should not be used, so bumping is necessary. Signed-off-by: Jean-Philippe Evrard <open-source@a.spamming.party>