Merge pull request #1936 from k8s-infra-cherrypick-robot/cherry-pick-1933-to-release-1.24

k8s-ci-robot · web-flow · commit 00651f70ddc0 · 2025-04-10T00:02:46.000-07:00
[release-1.24] test: fix CVE-2025-22871 in trivy action
diff --git a/.github/workflows/trivy.yaml b/.github/workflows/trivy.yaml
@@ -12,7 +12,7 @@ jobs:
       - name: Set up Go 1.x
         uses: actions/setup-go@v5
         with:
-          go-version: 1.23.6
+          go-version: 1.24.2
         id: go
 
       - name: Checkout code
diff --git a/.trivyignore b/.trivyignore
@@ -0,0 +1 @@
+CVE-2025-22871
