Wikid82 · Wikid82 · Jun 16, 2026 · Jun 16, 2026
diff --git a/.github/workflows/auto-changelog.yml b/.github/workflows/auto-changelog.yml
@@ -24,6 +24,6 @@ jobs:
         with:
           ref: ${{ github.event.workflow_run.head_sha || github.sha }}
       - name: Draft Release
-        uses: release-drafter/release-drafter@693d20e7c1ce1a81d3a41962f85914253b518449 # v7
+        uses: release-drafter/release-drafter@ed4bc48ec97379be2258e7b7ac2624a3e26ab809 # v7
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/docker-build.yml b/.github/workflows/docker-build.yml
@@ -656,7 +656,7 @@ jobs:
           format: 'table'
           severity: 'CRITICAL,HIGH'
           exit-code: '0'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
         continue-on-error: true
 
       - name: Run Trivy vulnerability scanner (SARIF)
@@ -668,7 +668,7 @@ jobs:
           format: 'sarif'
           output: 'trivy-results.sarif'
           severity: 'CRITICAL,HIGH'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
         continue-on-error: true
 
       - name: Check Trivy SARIF exists
@@ -880,7 +880,7 @@ jobs:
           trivyignores: '.trivyignore'
           severity: 'CRITICAL,HIGH'
           exit-code: '0'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
 
       - name: Run Trivy scan on PR image (SARIF - blocking)
         id: trivy-scan
@@ -895,7 +895,7 @@ jobs:
           # Keep scanning strict for CRITICAL/HIGH; fail is enforced explicitly
           # at the end so SARIF upload and summaries still run.
           exit-code: '1'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
         continue-on-error: true
 
       - name: Check Trivy PR SARIF exists

diff --git a/.github/workflows/nightly-build.yml b/.github/workflows/nightly-build.yml
@@ -592,7 +592,7 @@ jobs:
           image-ref: ${{ env.GHCR_REGISTRY }}/${{ env.IMAGE_NAME }}:nightly@${{ needs.build-and-push-nightly.outputs.digest }}
           format: 'sarif'
           output: 'trivy-nightly.sarif'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
           trivyignores: '.trivyignore'
 
       - name: Upload Trivy results

diff --git a/.github/workflows/security-pr.yml b/.github/workflows/security-pr.yml
@@ -373,7 +373,7 @@ jobs:
           format: 'sarif'
           output: 'trivy-binary-results.sarif'
           severity: 'CRITICAL,HIGH,MEDIUM'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
           trivyignores: '.trivyignore'
           config: 'trivy.yaml'
         continue-on-error: true
@@ -408,7 +408,7 @@ jobs:
           format: 'table'
           severity: 'CRITICAL,HIGH'
           exit-code: '1'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
           trivyignores: '.trivyignore'
           config: 'trivy.yaml'
 

diff --git a/.github/workflows/security-weekly-rebuild.yml b/.github/workflows/security-weekly-rebuild.yml
@@ -105,7 +105,7 @@ jobs:
           format: 'table'
           severity: 'CRITICAL,HIGH'
           exit-code: '1' # Fail workflow if vulnerabilities found
-          version: 'v0.71.0'
+          version: 'v0.71.1'
         continue-on-error: true
 
       - name: Run Trivy vulnerability scanner (SARIF)
@@ -116,7 +116,7 @@ jobs:
           format: 'sarif'
           output: 'trivy-weekly-results.sarif'
           severity: 'CRITICAL,HIGH,MEDIUM'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
 
       - name: Upload Trivy results to GitHub Security
         uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
@@ -131,7 +131,7 @@ jobs:
           format: 'json'
           output: 'trivy-weekly-results.json'
           severity: 'CRITICAL,HIGH,MEDIUM,LOW'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
 
       - name: Upload Trivy JSON results
         uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7