chore(deps): bump the gha group with 2 updates

[dependabot[bot]]

Bumps the gha group with 2 updates: aquasecurity/trivy-action and trufflesecurity/trufflehog.

Updates aquasecurity/trivy-action from 0.18.0 to 0.19.0

Release notes

Sourced from aquasecurity/trivy-action's releases.

v0.19.0

What's Changed

• bump trivy version to v0.50.1 by @​simar7 in aquasecurity/trivy-action#324

Full Changelog: https://github.com/aquasecurity/trivy-action/compare/0.18.0...0.19.0

Commits

• d710430 bump trivy version to v0.50.1 (#324)
• See full diff in compare view

Updates trufflesecurity/trufflehog from 3.71.0 to 3.72.0

Release notes

Sourced from trufflesecurity/trufflehog's releases.

v3.72.0

What's Changed

• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.10 by @​renovate in trufflesecurity/trufflehog#2636
• Fix 'toolchair not available' error by @​rgmz in trufflesecurity/trufflehog#2642
• Fix GitHub enumeration & rate-limiting logic by @​rgmz in trufflesecurity/trufflehog#2625
• fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to v6.2.0 by @​renovate in trufflesecurity/trufflehog#2638
• fix(deps): update module cloud.google.com/go/storage to v1.40.0 by @​renovate in trufflesecurity/trufflehog#2645
• Add JupiterOne detector by @​shreyas-sriram in trufflesecurity/trufflehog#2446
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.11 by @​renovate in trufflesecurity/trufflehog#2646
• fix(deps): update module github.com/thezeroslave/zapsentry to v1.22.0 by @​renovate in trufflesecurity/trufflehog#2648
• fix(deps): update module github.com/go-git/go-git/v5 to v5.12.0 by @​renovate in trufflesecurity/trufflehog#2649
• add GCP application default credentials detector by @​kenzht in trufflesecurity/trufflehog#2530
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.12 by @​renovate in trufflesecurity/trufflehog#2651
• Add GitLab CI Pipeline Example in Documentation by @​RoseSecurity in trufflesecurity/trufflehog#2601
• fix(deps): update module github.com/thezeroslave/zapsentry to v1.22.1 by @​renovate in trufflesecurity/trufflehog#2654
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.13 by @​renovate in trufflesecurity/trufflehog#2655
• Remove duplicate JiraToken.v2 declaration in defaults.go by @​rgmz in trufflesecurity/trufflehog#2657

New Contributors

• @​kenzht made their first contribution in trufflesecurity/trufflehog#2530
• @​RoseSecurity made their first contribution in trufflesecurity/trufflehog#2601

Full Changelog: https://github.com/trufflesecurity/trufflehog/compare/v3.71.2...v3.72.0

v3.71.2

What's Changed

• Link to GitHub contribution guide in CONTRIBUTING by @​rosecodym in trufflesecurity/trufflehog#2632
• Fixing nitro check by @​dylanTruffle in trufflesecurity/trufflehog#2631
• fix(deps): update module google.golang.org/api to v0.172.0 by @​renovate in trufflesecurity/trufflehog#2634
• make postman source public by @​zricethezav in trufflesecurity/trufflehog#2635

Full Changelog: https://github.com/trufflesecurity/trufflehog/compare/v3.71.1...v3.71.2

v3.71.1

What's Changed

• Fix GitHub panic and test errors by @​rgmz in trufflesecurity/trufflehog#2608
• fix(deps): update module github.com/xanzy/go-gitlab to v0.101.0 by @​renovate in trufflesecurity/trufflehog#2617
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.6 by @​renovate in trufflesecurity/trufflehog#2615
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.7 by @​renovate in trufflesecurity/trufflehog#2623
• Fix additional GitHub test errors by @​rgmz in trufflesecurity/trufflehog#2614
• [chore] - upgrade dep by @​ahrav in trufflesecurity/trufflehog#2618
• fix(deps): update golang.org/x/exp digest to a685a6e by @​renovate in trufflesecurity/trufflehog#2621
• Fix incorrect regular expression with missing closing bracket by @​fml09 in trufflesecurity/trufflehog#2616
• fix(deps): update module github.com/go-sql-driver/mysql to v1.8.1 by @​renovate in trufflesecurity/trufflehog#2626
• fix(deps): update module github.com/charmbracelet/glamour to v0.7.0 by @​renovate in trufflesecurity/trufflehog#2627
• [bugfix] - Update the Anthropic detector by @​ahrav in trufflesecurity/trufflehog#2629
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.8 by @​renovate in trufflesecurity/trufflehog#2630
• Use Lstat to identify non-regular files in filesystem source by @​dustin-decker in trufflesecurity/trufflehog#2628

... (truncated)

Commits

• d0d59c2 chore: remove duplicate jiratoken.v2 detector (#2657)
• ea842ec fix(deps): update module github.com/aws/aws-sdk-go to v1.51.13 (#2655)
• becce51 fix(deps): update module github.com/thezeroslave/zapsentry to v1.22.1 (#2654)
• 6d444f0 Add GitLab CI Pipeline Example in Documentation (#2601)
• 16d7665 fix(deps): update module github.com/aws/aws-sdk-go to v1.51.12 (#2651)
• 0d3023f add GCP application default credentials detector (#2530)
• 1c727b6 fix(deps): update module github.com/go-git/go-git/v5 to v5.12.0 (#2649)
• 2baacef fix(deps): update module github.com/thezeroslave/zapsentry to v1.22.0 (#2648)
• 6dd2c34 fix(deps): update module github.com/aws/aws-sdk-go to v1.51.11 (#2646)
• 31ad1ee Add JupiterOne detector (#2446)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Superseded by #605.