From bc7a2017305f2978eadd8c12db98c6ad95ff5342 Mon Sep 17 00:00:00 2001
From: Peter Wilcsinszky <peter.wilcsinszky@axoflow.com>
Date: Mon, 11 Nov 2024 13:10:23 +0100
Subject: [PATCH] chore: use stable trivy db refs

Signed-off-by: Peter Wilcsinszky <peter.wilcsinszky@axoflow.com>
---
 .github/workflows/artifacts.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/artifacts.yaml b/.github/workflows/artifacts.yaml
index 96fb3131..9091dd12 100644
--- a/.github/workflows/artifacts.yaml
+++ b/.github/workflows/artifacts.yaml
@@ -82,6 +82,9 @@ jobs:
           format: "sarif"
           output: "trivy-results.sarif"
         if: github.event_name == 'push'
+        env:
+          TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
+          TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:1
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v2