From 0cc2d4bf5feb1685ee7bf74c5d6ecd951928947a Mon Sep 17 00:00:00 2001
From: vishal egbert <vishal.egbert@thetradedesk.com>
Date: Tue, 2 Dec 2025 11:04:01 +1100
Subject: [PATCH] Print trivy dependency tree

---
 actions/vulnerability_scan/action.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/actions/vulnerability_scan/action.yaml b/actions/vulnerability_scan/action.yaml
index 366ee675..74316865 100644
--- a/actions/vulnerability_scan/action.yaml
+++ b/actions/vulnerability_scan/action.yaml
@@ -116,6 +116,7 @@ runs:
     env:
       TRIVY_SKIP_DB_UPDATE: true
       TRIVY_SKIP_JAVA_DB_UPDATE: true
+      TRIVY_DEPENDENCY_TREE: true
 
   - name: Test with Trivy vulnerability scanner
     uses: aquasecurity/trivy-action@0.26.0