chore(deps): bump the gha group with 2 updates

[dependabot[bot]]

Bumps the gha group with 2 updates: aquasecurity/trivy-action and trufflesecurity/trufflehog.

Updates aquasecurity/trivy-action from 0.18.0 to 0.19.0

Release notes

Sourced from aquasecurity/trivy-action's releases.

v0.19.0

What's Changed

• bump trivy version to v0.50.1 by @​simar7 in aquasecurity/trivy-action#324

Full Changelog: https://github.com/aquasecurity/trivy-action/compare/0.18.0...0.19.0

Commits

• d710430 bump trivy version to v0.50.1 (#324)
• See full diff in compare view

Updates trufflesecurity/trufflehog from 3.71.0 to 3.73.0

Release notes

Sourced from trufflesecurity/trufflehog's releases.

v3.73.0

What's Changed

• [chore] - upgrade launchdarkly dep by @​ahrav in trufflesecurity/trufflehog#2650
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.14 by @​renovate in trufflesecurity/trufflehog#2659
• fix(deps): update module github.com/launchdarkly/go-server-sdk/v7 to v7.3.0 by @​renovate in trufflesecurity/trufflehog#2660
• fix(deps): update module github.com/google/go-github/v57 to v61 by @​renovate in trufflesecurity/trufflehog#2652
• [chore] - update go-github dep manually by @​ahrav in trufflesecurity/trufflehog#2664
• chore: fix some typos by @​redismongo in trufflesecurity/trufflehog#2666
• fix(deps): update module golang.org/x/oauth2 to v0.19.0 by @​renovate in trufflesecurity/trufflehog#2670
• [bug] - Add ASCII validation check for base64 decoding by @​ahrav in trufflesecurity/trufflehog#2671
• Handle inactive Slack account tokens by @​rosecodym in trufflesecurity/trufflehog#2668
• fix(deps): update module golang.org/x/net to v0.24.0 by @​renovate in trufflesecurity/trufflehog#2662
• fix(deps): update module github.com/thezeroslave/zapsentry to v1.23.0 by @​renovate in trufflesecurity/trufflehog#2667
• fix(deps): update module github.com/wasilibs/go-re2 to v1.5.2 by @​renovate in trufflesecurity/trufflehog#2681
• fix(deps): update golang.org/x/exp digest to c0f41cb by @​renovate in trufflesecurity/trufflehog#2672
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.16 by @​renovate in trufflesecurity/trufflehog#2680
• Enrich Gitlab enumeration logging by @​rosecodym in trufflesecurity/trufflehog#2678
• fix(deps): update module github.com/xanzy/go-gitlab to v0.102.0 by @​renovate in trufflesecurity/trufflehog#2682
• fix(deps): update testcontainers-go monorepo to v0.30.0 by @​renovate in trufflesecurity/trufflehog#2685
• fix(deps): update module github.com/go-ldap/ldap/v3 to v3.4.7 by @​renovate in trufflesecurity/trufflehog#2684
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.17 by @​renovate in trufflesecurity/trufflehog#2686
• Update README.md with Windows-specific Docker installation instructions by @​Jacinto27 in trufflesecurity/trufflehog#2674
• fix(deps): update golang.org/x/exp digest to 93d18d7 by @​renovate in trufflesecurity/trufflehog#2688
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.18 by @​renovate in trufflesecurity/trufflehog#2690
• Add Wiz detector by @​shreyas-sriram in trufflesecurity/trufflehog#2691

New Contributors

• @​redismongo made their first contribution in trufflesecurity/trufflehog#2666
• @​Jacinto27 made their first contribution in trufflesecurity/trufflehog#2674

Full Changelog: https://github.com/trufflesecurity/trufflehog/compare/v3.72.0...v3.73.0

v3.72.0

What's Changed

• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.10 by @​renovate in trufflesecurity/trufflehog#2636
• Fix 'toolchair not available' error by @​rgmz in trufflesecurity/trufflehog#2642
• Fix GitHub enumeration & rate-limiting logic by @​rgmz in trufflesecurity/trufflehog#2625
• fix(deps): update module github.com/launchdarkly/go-server-sdk/v6 to v6.2.0 by @​renovate in trufflesecurity/trufflehog#2638
• fix(deps): update module cloud.google.com/go/storage to v1.40.0 by @​renovate in trufflesecurity/trufflehog#2645
• Add JupiterOne detector by @​shreyas-sriram in trufflesecurity/trufflehog#2446
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.11 by @​renovate in trufflesecurity/trufflehog#2646
• fix(deps): update module github.com/thezeroslave/zapsentry to v1.22.0 by @​renovate in trufflesecurity/trufflehog#2648
• fix(deps): update module github.com/go-git/go-git/v5 to v5.12.0 by @​renovate in trufflesecurity/trufflehog#2649
• add GCP application default credentials detector by @​kenzht in trufflesecurity/trufflehog#2530
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.12 by @​renovate in trufflesecurity/trufflehog#2651
• Add GitLab CI Pipeline Example in Documentation by @​RoseSecurity in trufflesecurity/trufflehog#2601
• fix(deps): update module github.com/thezeroslave/zapsentry to v1.22.1 by @​renovate in trufflesecurity/trufflehog#2654
• fix(deps): update module github.com/aws/aws-sdk-go to v1.51.13 by @​renovate in trufflesecurity/trufflehog#2655
• Remove duplicate JiraToken.v2 declaration in defaults.go by @​rgmz in trufflesecurity/trufflehog#2657

... (truncated)

Commits

• 08b6f90 Add Wiz detector (#2691)
• 5879930 fix(deps): update module github.com/aws/aws-sdk-go to v1.51.18 (#2690)
• 5cf08c2 fix(deps): update golang.org/x/exp digest to 93d18d7 (#2688)
• ccd1910 Update README.md with Windows-specific Docker installation instructions (#2674)
• 72e0106 fix(deps): update module github.com/aws/aws-sdk-go to v1.51.17 (#2686)
• 75a6ea9 fix(deps): update module github.com/go-ldap/ldap/v3 to v3.4.7 (#2684)
• f7ad026 fix(deps): update testcontainers-go monorepo to v0.30.0 (#2685)
• 18e7d44 fix(deps): update module github.com/xanzy/go-gitlab to v0.102.0 (#2682)
• b745cfd Enrich Gitlab enumeration logging (#2678)
• 62b89dd fix(deps): update module github.com/aws/aws-sdk-go to v1.51.16 (#2680)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Superseded by #607.