starred/bambuddy-maziggy-1
1
0
Fork 0
mirror of https://github.com/maziggy/bambuddy.git synced 2026-05-09 08:25:54 +02:00
Code Issues 44 Projects Packages Wiki Activity

[PR #437] [MERGED] build(deps): bump aquasecurity/trivy-action from 0.33.1 to 0.34.0 in /.github/workflows in the github_actions group across 1 directory #1046

New issue
Closed
opened 2026-05-07 00:15:41 +02:00 by BreizhHardware · 0 comments
BreizhHardware commented 2026-05-07 00:15:41 +02:00
Owner
Copy link

📋 Pull Request Information

Original PR: https://github.com/maziggy/bambuddy/pull/437
Author: @dependabot[bot]
Created: 2/18/2026
Status: Merged
Merged: 2/18/2026
Merged by: @maziggy

Base: mainHead: dependabot/github_actions/dot-github/workflows/github_actions-9bddd90c58

📝 Commits (1)

  • 1d0875e build(deps): bump aquasecurity/trivy-action

📊 Changes

1 file changed (+2 additions, -2 deletions)

View changed files

📝 .github/workflows/security.yml (+2 -2)

📄 Description

Bumps the github_actions group with 1 update in the /.github/workflows directory: aquasecurity/trivy-action.

Updates aquasecurity/trivy-action from 0.33.1 to 0.34.0

Release notes

Sourced from aquasecurity/trivy-action's releases.

v0.34.0

What's Changed

Full Changelog: https://github.com/aquasecurity/trivy-action/compare/0.33.1...0.34.0

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/maziggy/bambuddy/pull/437 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 2/18/2026 **Status:** ✅ Merged **Merged:** 2/18/2026 **Merged by:** [@maziggy](https://github.com/maziggy) **Base:** `main` ← **Head:** `dependabot/github_actions/dot-github/workflows/github_actions-9bddd90c58` --- ### 📝 Commits (1) - [`1d0875e`](https://github.com/maziggy/bambuddy/commit/1d0875ee83992e2b1e22afac06639717e384211d) build(deps): bump aquasecurity/trivy-action ### 📊 Changes **1 file changed** (+2 additions, -2 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/security.yml` (+2 -2) </details> ### 📄 Description Bumps the github_actions group with 1 update in the /.github/workflows directory: [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action). Updates `aquasecurity/trivy-action` from 0.33.1 to 0.34.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aquasecurity/trivy-action/releases">aquasecurity/trivy-action's releases</a>.</em></p> <blockquote> <h2>v0.34.0</h2> <h2>What's Changed</h2> <ul> <li>ci: use setup-bats in bump-trivy workflow by <a href="https://github.com/nikpivkin"><code>@​nikpivkin</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/494">aquasecurity/trivy-action#494</a></li> <li>chore: update README by <a href="https://github.com/nikpivkin"><code>@​nikpivkin</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/493">aquasecurity/trivy-action#493</a></li> <li>ci: install trivy in bump-trivy workflow and update tests by <a href="https://github.com/nikpivkin"><code>@​nikpivkin</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/495">aquasecurity/trivy-action#495</a></li> <li>chore(deps): Update trivy to v0.68.1 by <a href="https://github.com/aqua-bot"><code>@​aqua-bot</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/496">aquasecurity/trivy-action#496</a></li> <li>ci: use checks bundle v2 in sync workflow by <a href="https://github.com/nikpivkin"><code>@​nikpivkin</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/505">aquasecurity/trivy-action#505</a></li> <li>chore(deps): Update trivy to v0.69.1 by <a href="https://github.com/aqua-bot"><code>@​aqua-bot</code></a> in <a href="https://redirect.github.com/aquasecurity/trivy-action/pull/506">aquasecurity/trivy-action#506</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/aquasecurity/trivy-action/compare/0.33.1...0.34.0">https://github.com/aquasecurity/trivy-action/compare/0.33.1...0.34.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/aquasecurity/trivy-action/commit/c1824fd6edce30d7ab345a9989de00bbd46ef284"><code>c1824fd</code></a> chore(deps): Update trivy to v0.69.1 (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/506">#506</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/bc61dc55704e2d5704760f3cdab0d09acf16e4ca"><code>bc61dc5</code></a> Merge commit from fork</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/5eb7ef2605dd123171cc50b6be71f3b1fefb6a13"><code>5eb7ef2</code></a> ci: use checks bundle v2 in sync workflow (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/505">#505</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/22438a435773de8c97dc0958cc0b823c45b064ac"><code>22438a4</code></a> Merge pull request <a href="https://redirect.github.com/aquasecurity/trivy-action/issues/496">#496</a> from aquasecurity/bump-trivy-1765431074</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/0024b3f39eb28238f271395b86ec43ee831aa97e"><code>0024b3f</code></a> chore(deps): Update trivy to v0.68.1</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/83690f7d38282f3c235caa2aac0043f2b4fe6134"><code>83690f7</code></a> ci: install trivy in bump-trivy workflow and update tests (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/495">#495</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/df65449f48b89ca7da6699b2d7620f4eaac2355b"><code>df65449</code></a> chore: update README (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/493">#493</a>)</li> <li><a href="https://github.com/aquasecurity/trivy-action/commit/0317097f59169a66937f3f5b95d7f8b7cee1b7eb"><code>0317097</code></a> ci: use setup-bats in bump-trivy workflow (<a href="https://redirect.github.com/aquasecurity/trivy-action/issues/494">#494</a>)</li> <li>See full diff in <a href="https://github.com/aquasecurity/trivy-action/compare/0.33.1...0.34.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasecurity/trivy-action&package-manager=github_actions&previous-version=0.33.1&new-version=0.34.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maziggy/bambuddy/network/alerts). </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
BreizhHardware 2026-05-07 00:15:41 +02:00
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
github-repo-stats
bug-report-assets
dev
0.2.4b3
0.2.4b2
0.2.4b1
pr/1114
0.2.3.2
0.2.3.1
0.2.3
0.2.3b3
0.2.3b2
0.2.3b1
0.2.2.2
0.2.2.1
0.2.2b3
0.2.2
0.2.2b2
0.2.2b1
0.2.1.1
0.2.1
0.2.1b3
0.2.1b2
0.2.1b
0.2.0
0.2.0b
0.1.5-2-ctrl
v0.2.4b4-daily.20260508
v0.2.4b2
v0.2.4b3
v0.2.4b1
v0.2.3.2
v0.2.3.1
v0.2.3
v0.2.3b3
v0.2.3b2
v0.2.3b1-daily.20260407
v0.2.3b1
v0.2.2.2
v0.2.2.1
v0.2.3b1-daily.20260318
v0.2.3b1-daily.20260317
v0.2.3b1-daily.20260316
v0.2.2
v0.2.2b4-daily.20260314
v0.2.2b4-daily.20260313
v0.2.2b3-daily.20260312
v0.2.2b3-1
v0.2.2b2
v0.2.2-b2
v0.2.2b3
v0.2.2-b1
v0.2.2b1
v0.2.1.1
v0.2.1
v0.2.1b3
v0.2.1b2
v0.2.1b
v0.2.0
v0.1.9
v0.1.8.1
v0.1.8
v0.1.7
v0.1.6.2
v0.1.6.1
v0.1.6-hotfix
v0.1.6
v0.1.6b11
v0.1.6b10
v0.1.6b9
v0.1.6b8
v0.1.6b7
v0.1.6b6
v0.1.6b5
v0.1.6b4
v0.1.6b3
v0.1.6b2
v0.1.6b
v0.1.5-final
v0.1.5b7
v0.1.5b6
v0.1.5b5
v0.1.5b4
v0.1.5b3
v0.1.5b2
v0.1.5b
v0.1.4
v0.1.3
v0.1.2-bugfix
v0.1.2-final
v0.1.2
0.1.1
Labels
Clear labels   
A1

   
automated

   
automated

   
bug

   
bug

   
Closed due to inactivity

   
contrib

   
dependencies

   
dependencies

   
duplicate

   
enhancement

   
feedback

   
hold

   
invalid

   
Notes

   
P1S

   
pull-request
Mirrored from GitHub Pull Request

  
security

   
ThumbsUp

   
user-report

   
wontfix
No labels
A1
automated
automated
bug
bug
Closed due to inactivity
contrib
dependencies
dependencies
duplicate
enhancement
feedback
hold
invalid
Notes
P1S
pull-request
security
ThumbsUp
user-report
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/bambuddy-maziggy-1#1046
No description provided.