FIX: More dashboard and trivy relatred fixes #364
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Mionsz
force-pushed
the
private/mlinkiew/trivy-related-fixes
branch
from
2850ce4 to
415cc8a
Compare
Mionsz
added
bug fix
Mionsz
force-pushed
the
private/mlinkiew/trivy-related-fixes
branch
2 times, most recently
from
32708c8 to
3fa797e
Compare
Collaborator
MateuszGrabuszynski
left a comment
MateuszGrabuszynski
left a comment
There was a problem hiding this comment.
It is a good practice to add those package versions to ensure stable execution conditions. However, we should keep in mind, they all shall be less than 1 year old, unless strictly necessary.
Mionsz
force-pushed
the
private/mlinkiew/trivy-related-fixes
branch
from
3fa797e to
33bfa50
Compare
Mionsz
force-pushed
the
private/mlinkiew/trivy-related-fixes
branch
from
fc7540f to
a361105
Compare
Mionsz
force-pushed
the
private/mlinkiew/trivy-related-fixes
branch
from
225ae5d to
b6d8469
Compare
Mionsz
force-pushed
the
private/mlinkiew/trivy-related-fixes
branch
from
bdf388b to
7a20351
Compare
FIX: Trivy related update to `github_pages_update.yml` Pinning the versions of action workflows Signed-off-by: Miłosz Linkiewicz <[email protected]>
FIX: Security scans versioning in `validation-tests.yml` Pinned down the version of pipenv being installed by `python3 -m pip` Signed-off-by: Miłosz Linkiewicz <[email protected]>
FIX: Added version pinning in setup_build_env.sh. This addressed another issue found by trivy and security tools. Signed-off-by: Miłosz Linkiewicz <[email protected]>
Signed-off-by: Miłosz Linkiewicz <[email protected]>
Mionsz
force-pushed
the
private/mlinkiew/trivy-related-fixes
branch
from
7a20351 to
5004be6
Compare
MateuszGrabuszynski
approved these changes
Aug 27, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
FIX: More dashboard and trivy relatred fixes.
Add: Missing pip version pinnings
Add: Missing hash version hooking in github actions.