From 87f229fe7649e75d8c2dfdaff0046d580d3e480a Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 9 Mar 2026 16:57:12 +0000
Subject: [PATCH] chore(deps): update aquasecurity/trivy-action action to
 v0.35.0

---
 .github/workflows/build-prod.yml | 2 +-
 .github/workflows/scans.yml      | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/build-prod.yml b/.github/workflows/build-prod.yml
index 4109d06a..e2c38833 100644
--- a/.github/workflows/build-prod.yml
+++ b/.github/workflows/build-prod.yml
@@ -120,7 +120,7 @@ jobs:
           gh release edit $TAG --title $TAG --notes "${{ steps.generate_notes.outputs.release_notes }}"
 
       - name: Generate SBOM (CycloneDX)
-        uses: aquasecurity/trivy-action@0.30.0
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: 'fs'
           scan-ref: '.'
diff --git a/.github/workflows/scans.yml b/.github/workflows/scans.yml
index af890444..9690f68e 100644
--- a/.github/workflows/scans.yml
+++ b/.github/workflows/scans.yml
@@ -19,7 +19,7 @@ jobs:
       - uses: actions/checkout@v4
 
       - name: Generate Trivy GitHub report
-        uses: aquasecurity/trivy-action@0.28.0
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: 'fs'
           scan-ref: '.'
@@ -28,7 +28,7 @@ jobs:
           github-pat: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Generate Trivy SARIF report
-        uses: aquasecurity/trivy-action@0.28.0
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: 'fs'
           scan-ref: '.'