From 97ae4c05891fdd38c1022443c0a5707c10c93844 Mon Sep 17 00:00:00 2001
From: Sneha <sneha.desai@nav.no>
Date: Tue, 12 Nov 2024 10:35:21 +0100
Subject: [PATCH] Merge dependebot pr (#217)

* Bump avhengigheter

* Oppdaterte package-lock.json

* Workaround until Trivy fikses issue with downloading db artifacts
---
 .github/workflows/main.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 0e606e6..23e1800 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -90,6 +90,8 @@ jobs:
         run: docker pull ${{ needs.test-build-and-push.outputs.image }}
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@master
+        env: # Workaround for rate limiting inntil denne er fikset: https://github.com/aquasecurity/trivy-action/issues/389
+          TRIVY_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-db"
         with:
           image-ref: "${{ needs.test-build-and-push.outputs.image }}"
           format: "sarif"