From 2cf98721ca04cd374b82c8eeb5d583348a14aa6a Mon Sep 17 00:00:00 2001
From: Danesh Kuruppu <dknkuruppu@gmail.com>
Date: Wed, 30 Oct 2024 20:36:13 +0530
Subject: [PATCH] Move the trivy plugin to the latest with scan-ref change

---
 .github/workflows/publish-release.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/publish-release.yml b/.github/workflows/publish-release.yml
index 63650d2..b4b595a 100644
--- a/.github/workflows/publish-release.yml
+++ b/.github/workflows/publish-release.yml
@@ -30,10 +30,10 @@ jobs:
         env:
           TRIVY_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db
           TRIVY_JAVA_DB_REPOSITORY: ghcr.io/aquasecurity/trivy-java-db,public.ecr.aws/aquasecurity/trivy-java-db
-        uses: aquasecurity/trivy-action@0.23.0
+        uses: aquasecurity/trivy-action@master
         with:
           scan-type: 'rootfs'
-          scan-ref: '/github/workspace/ballerina/lib'
+          scan-ref: '${{ github.workspace.ballerina.lib }}/'
           format: 'table'
           timeout: '10m0s'
           exit-code: '1'