From 8c2b4804ed086f3263e3b5362068df5252855c7b Mon Sep 17 00:00:00 2001
From: Brian G <162315381+BGos87@users.noreply.github.com>
Date: Mon, 23 Mar 2026 13:30:29 +0000
Subject: [PATCH] Update Trivy action to a specific commit version

---
 .github/workflows/ci.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index cc7ceb2..a6fd615 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -51,7 +51,7 @@ jobs:
 
 # setting up trivy security scanner  
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1
         with:
           image-ref: 'consensys/quorum-explorer:${{ env.DOCKER_TAG }}'
           format: 'sarif'