IABTechLab · ashleysmithTTD · Dec 11, 2025 · Dec 11, 2025
diff --git a/actions/vulnerability_scan/action.yaml b/actions/vulnerability_scan/action.yaml
@@ -79,7 +79,7 @@ runs:
       key: cache-trivy-${{ steps.date.outputs.date }}
 
   - name: Generate Trivy vulnerability scan report
-    uses: aquasecurity/trivy-action@0.26.0
+    uses: aquasecurity/trivy-action@0.33.1
     if: inputs.publish_vulnerabilities == 'true'
     with:
       image-ref: ${{ inputs.image_ref }}
@@ -103,7 +103,7 @@ runs:
 
   - name: Local vulnerability scanner for MEDIUM,HIGH,CRITICAL for reporting
     if: ${{ inputs.full_report  == 'true' }}
-    uses: aquasecurity/trivy-action@0.26.0
+    uses: aquasecurity/trivy-action@0.33.1
     with:
       image-ref: ${{ inputs.image_ref }}
       scan-type: ${{ inputs.scan_type }}
@@ -119,7 +119,7 @@ runs:
       TRIVY_DEPENDENCY_TREE: true
 
   - name: Test with Trivy vulnerability scanner
-    uses: aquasecurity/trivy-action@0.26.0
+    uses: aquasecurity/trivy-action@0.33.1
     with:
       image-ref: ${{ inputs.image_ref }}
       scan-type: ${{ inputs.scan_type }}