Merge pull request #16 from Audrey-me/trivy-fix

Version Bump for Trivy

Author: damienjburks

.github/workflows/unit-sec-test.yml

@@ -33,7 +33,7 @@ jobs:
           docker build -t python-fastapi:${{ github.sha }} .   ###- This section needed to be added becasue the image was not persisting between jobs--##
 
       - name: Run Trivy Vulnerability Scanner
-        uses: aquasecurity/trivy-action@0.31.0
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1
         with:
           image-ref: 'python-fastapi:${{ github.sha }}'
           format: 'sarif'
@@ -67,7 +67,7 @@ jobs:
 
           # Run OWASP ZAP scan
           - name: zap scan
-            uses: zaproxy/action-api-scan@v0.9.0
+            uses: zaproxy/action-api-scan@77dfa9a647bb0f583e39d4df8531634d6ddd8df4
             with:
              token: ${{ secrets.GITHUB_TOKEN }}
              docker_name: 'ghcr.io/zaproxy/zaproxy:stable'