Merge pull request #2614 from k8s-infra-cherrypick-robot/cherry-pick-2611-to-release-1.31

andyzhangx · web-flow · commit fa7e824e8a21 · 2025-06-14T17:26:33.000+03:00
[release-1.31] test: fix CVE-2025-4673 in trivy action
diff --git a/.github/workflows/trivy.yaml b/.github/workflows/trivy.yaml
@@ -12,7 +12,7 @@ jobs:
       - name: Set up Go 1.x
         uses: actions/setup-go@v5
         with:
-          go-version: 1.24.2
+          go-version: 1.24.4
         id: go
 
       - name: Checkout code
diff --git a/.trivyignore b/.trivyignore
@@ -1 +1,4 @@
 CVE-2024-3744
+CVE-2025-22874
+CVE-2025-4673
+CVE-2025-0913
