From f69f457c5cf51302f6a5078b1afac80f0759a04d Mon Sep 17 00:00:00 2001
From: akshanshjaiswal-atlan <akshansh.jaiswal@atlan.com>
Date: Fri, 20 Mar 2026 15:41:57 +0530
Subject: [PATCH] fix: update trivy-action to 0.35.0 to use latest stable
 versions

---
 .github/workflows/pyatlan-scheduled-scan.yml |  8 ++++----
 .github/workflows/scheduled-trivy-scan.yml   |  8 ++++----
 .github/workflows/trivy.yml                  | 12 ++++++------
 3 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/.github/workflows/pyatlan-scheduled-scan.yml b/.github/workflows/pyatlan-scheduled-scan.yml
index c42a242bb..c376a4df1 100644
--- a/.github/workflows/pyatlan-scheduled-scan.yml
+++ b/.github/workflows/pyatlan-scheduled-scan.yml
@@ -41,7 +41,7 @@ jobs:
       # ── Image scan ──
 
       - name: Trivy image scan (JSON)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           image-ref: 'pyatlan:trivy-scan'
           scanners: 'vuln'
@@ -56,7 +56,7 @@ jobs:
           TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
 
       - name: Trivy image scan (table)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           image-ref: 'pyatlan:trivy-scan'
           scanners: 'vuln'
@@ -73,7 +73,7 @@ jobs:
       # ── Dependency scan ──
 
       - name: Trivy dependency scan (JSON)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: fs
           input: 'uv.lock'
@@ -88,7 +88,7 @@ jobs:
           TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
 
       - name: Trivy dependency scan (table)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: fs
           input: 'uv.lock'
diff --git a/.github/workflows/scheduled-trivy-scan.yml b/.github/workflows/scheduled-trivy-scan.yml
index f4ff3b33b..98c73cf4f 100644
--- a/.github/workflows/scheduled-trivy-scan.yml
+++ b/.github/workflows/scheduled-trivy-scan.yml
@@ -41,7 +41,7 @@ jobs:
       # ── Image scan ──
 
       - name: Trivy image scan (JSON)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           image-ref: 'pyatlan:trivy-scan'
           scanners: 'vuln'
@@ -56,7 +56,7 @@ jobs:
           TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
 
       - name: Trivy image scan (table)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           image-ref: 'pyatlan:trivy-scan'
           scanners: 'vuln'
@@ -73,7 +73,7 @@ jobs:
       # ── Dependency scan ──
 
       - name: Trivy dependency scan (JSON)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: fs
           input: 'uv.lock'
@@ -88,7 +88,7 @@ jobs:
           TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
 
       - name: Trivy dependency scan (table)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: fs
           input: 'uv.lock'
diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
index d3c3da262..e20da3858 100644
--- a/.github/workflows/trivy.yml
+++ b/.github/workflows/trivy.yml
@@ -41,7 +41,7 @@ jobs:
           tags: pyatlan-trivy:latest
 
       - name: Trivy image scan (table)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           image-ref: pyatlan-trivy:latest
           scanners: 'vuln'
@@ -67,7 +67,7 @@ jobs:
           fi
 
       - name: Trivy image scan (SARIF)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           image-ref: pyatlan-trivy:latest
           scanners: 'vuln'
@@ -82,7 +82,7 @@ jobs:
           TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
 
       - name: Trivy dependency scan (uv.lock, table)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: fs
           scan-ref: uv.lock
@@ -108,7 +108,7 @@ jobs:
           fi
 
       - name: Trivy dependency scan (uv.lock, SARIF)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: fs
           scan-ref: uv.lock
@@ -163,7 +163,7 @@ jobs:
           } >> "$GITHUB_STEP_SUMMARY"
 
       - name: Fail on High/Critical vulnerabilities (image)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           image-ref: pyatlan-trivy:latest
           scanners: 'vuln'
@@ -177,7 +177,7 @@ jobs:
           TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
 
       - name: Fail on High/Critical vulnerabilities (uv.lock)
-        uses: aquasecurity/trivy-action@0.34.2
+        uses: aquasecurity/trivy-action@0.35.0
         with:
           scan-type: fs
           scan-ref: uv.lock