From 45c630970fab80c37086f7784ca0bb81748abd51 Mon Sep 17 00:00:00 2001
From: mamutmk5 <3045922+mamutmk5@users.noreply.github.com>
Date: Thu, 7 Nov 2024 13:24:53 +0100
Subject: [PATCH 1/3] BC-8372 - trivy update

---
 .github/workflows/push.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/push.yml b/.github/workflows/push.yml
index 333d4afe59d..04119d23be2 100644
--- a/.github/workflows/push.yml
+++ b/.github/workflows/push.yml
@@ -180,7 +180,7 @@ jobs:
           path: ${{ github.workspace }}/.cache/trivy
           key: cache-trivy-${{ steps.date.outputs.date }}
       - name: run trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@1f6384b6ceecbbc6673526f865b818a2a06b07c9
+        uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2
         with:
           image-ref: 'ghcr.io/${{ github.repository }}:${{ needs.branch_meta.outputs.sha }}'
           format: 'sarif'

From 17e4a1478abdf762484a15895c2643edce708a03 Mon Sep 17 00:00:00 2001
From: mamutmk5 <3045922+mamutmk5@users.noreply.github.com>
Date: Thu, 7 Nov 2024 13:36:36 +0100
Subject: [PATCH 2/3] BC-8372 - set trivy to scan docker image

---
 .github/workflows/push.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/push.yml b/.github/workflows/push.yml
index 04119d23be2..03187d2c3a4 100644
--- a/.github/workflows/push.yml
+++ b/.github/workflows/push.yml
@@ -185,6 +185,7 @@ jobs:
           image-ref: 'ghcr.io/${{ github.repository }}:${{ needs.branch_meta.outputs.sha }}'
           format: 'sarif'
           output: 'trivy-results.sarif'
+          scan-type: 'image'
           severity: 'CRITICAL,HIGH'
           ignore-unfixed: true
         env:

From ecc9d169dd337aed177e7b87bab1fa4b927639e6 Mon Sep 17 00:00:00 2001
From: mamutmk5 <3045922+mamutmk5@users.noreply.github.com>
Date: Thu, 7 Nov 2024 13:41:18 +0100
Subject: [PATCH 3/3] BC-8372 - remove node needed cache operations

---
 .github/workflows/push.yml | 8 --------
 1 file changed, 8 deletions(-)

diff --git a/.github/workflows/push.yml b/.github/workflows/push.yml
index 03187d2c3a4..1862d1e897b 100644
--- a/.github/workflows/push.yml
+++ b/.github/workflows/push.yml
@@ -171,14 +171,6 @@ jobs:
       contents: read
       security-events: write
     steps:
-      - name: Get current date
-        id: date
-        run: echo "date=$(date +'%Y-%m-%d')" >> $GITHUB_OUTPUT
-      - name: Restore cached trivy DBs
-        uses: actions/cache/restore@v4
-        with:
-          path: ${{ github.workspace }}/.cache/trivy
-          key: cache-trivy-${{ steps.date.outputs.date }}
       - name: run trivy vulnerability scanner
         uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2
         with: