diff --git a/.github/workflows/staging.yml b/.github/workflows/staging.yml index 74511f8..b1590da 100644 --- a/.github/workflows/staging.yml +++ b/.github/workflows/staging.yml @@ -22,7 +22,7 @@ jobs: # Build and dry-run maven-publish (metadata and pom, but no signing) run: ./gradlew build generateMetadataFileForMavenJavaPublication generatePomFileForMavenJavaPublication --no-daemon - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@5681af892cd0f4997658e2bacc62bd0a894cf564 + uses: aquasecurity/trivy-action@master with: ignore-unfixed: true scan-ref: 'build/publications/mavenJava'