fix trivy

Signed-off-by: Adrian Cole <adrian.cole@elastic.co>
openzipkin · Feb 17, 2025 · 3b690c9 · 3b690c9
1 parent b4330d1
commit 3b690c9
Showing 1 changed file with 1 addition and 4 deletions.
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -24,7 +24,7 @@ on:  # yamllint disable-line rule:truthy
 jobs:
   security:
     name: security
-    runs-on: ubuntu-24.04  # newest available distribution, aka numbat
+    runs-on: ubuntu-22.04  # newest available distribution, aka jellyfish
     # skip commits made by the release plugin
     if: "!contains(github.event.head_commit.message, 'maven-release-plugin')"
     steps:
@@ -39,9 +39,6 @@ jobs:
       - name: Run Trivy vulnerability and secret scanner
         uses: aquasecurity/trivy-action@master
         id: trivy
-        env:  # See https://github.com/aquasecurity/trivy/discussions/7668
-          TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
-          TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
         with:
           scan-type: 'fs'
           scan-ref: '.'  # scan the entire repository