From 401d58a90530cffbb4db7369ef51573ffffe1a62 Mon Sep 17 00:00:00 2001
From: Yves Galante <yves.galante@jmob.net>
Date: Sat, 24 Feb 2024 11:44:10 +0100
Subject: [PATCH] Fix GitHub Action Trivy Analysis warnings

Update trivy-action to 0.17.0

Close #27264

Signed-off-by: Yves Galante <yves.galante@jmob.net>
---
 .github/workflows/trivy-analysis.yml | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/trivy-analysis.yml b/.github/workflows/trivy-analysis.yml
index 0dbc4c55e9..33866d104e 100644
--- a/.github/workflows/trivy-analysis.yml
+++ b/.github/workflows/trivy-analysis.yml
@@ -22,15 +22,14 @@ jobs:
         uses: aquasecurity/trivy-action@d710430a6722f083d3b36b8339ff66b32f22ee55
         with:
           image-ref: quay.io/keycloak/${{ matrix.container}}:nightly
-          format: template
-          template: '@/contrib/sarif.tpl'
+          format: sarif
           output: trivy-results.sarif
           severity: MEDIUM,CRITICAL,HIGH
           ignore-unfixed: true
-          security-checks: vuln
           timeout: 15m
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: trivy-results.sarif
+          category: ${{ matrix.container}}