ci: update CI workflows to latest security and release actions

appleboy · appleboy · commit df48b8b95022 · 2026-02-28T14:36:38.000+08:00
- Update Trivy action version from 0.34.0 to 0.34.1 in Docker and Security workflow files
- Upgrade GoReleaser action from v6 to v7 in the release workflow

Signed-off-by: appleboy &lt;appleboy.tw@gmail.com&gt;
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
@@ -68,7 +68,7 @@ jobs:
             VERSION=${{ steps.docker-meta.outputs.version }}
 
       - name: Run Trivy vulnerability scanner on Docker image
-        uses: aquasecurity/trivy-action@0.34.0
+        uses: aquasecurity/trivy-action@0.34.1
         with:
           image-ref: ${{ env.REPO }}:scan
           ignore-unfixed: true
diff --git a/.github/workflows/goreleaser.yml b/.github/workflows/goreleaser.yml
@@ -25,7 +25,7 @@ jobs:
           check-latest: true
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@v6
+        uses: goreleaser/goreleaser-action@v7
         with:
           # either 'goreleaser' (default) or 'goreleaser-pro'
           distribution: goreleaser
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -23,7 +23,7 @@ jobs:
         uses: actions/checkout@v6
 
       - name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@0.34.0
+        uses: aquasecurity/trivy-action@0.34.1
         with:
           scan-type: "fs"
           scan-ref: "."
@@ -39,7 +39,7 @@ jobs:
           sarif_file: "trivy-results.sarif"
 
       - name: Run Trivy vulnerability scanner (table output)
-        uses: aquasecurity/trivy-action@0.34.0
+        uses: aquasecurity/trivy-action@0.34.1
         if: always()
         with:
           scan-type: "fs"
