Update trivy.yml

Trivy rate limit workaround + update checkout and codeql task versions

.github/workflows/trivy.yml

@@ -14,10 +14,14 @@ jobs:
  runs-on: ubuntu-latest
  steps:
  - name: Checkout code
- uses: actions/checkout@v3
+ uses: actions/checkout@v4
 
  - name: Run static analysis
  uses: aquasecurity/trivy-action@master
+ env:
+ # Workaround for rate limiting on ghcr. Use these two entries for ghcr related TOOMANYREQUESTS errors.
+ TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
+ TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
  with:
  scan-type: 'fs'
  vuln-type: 'library'
@@ -29,7 +33,7 @@ jobs:
 
 
  - name: Upload Trivy scan results to GitHub Security tab
- uses: github/codeql-action/upload-sarif@v2
+ uses: github/codeql-action/upload-sarif@v3
  with:
  sarif_file: 'trivy-results.sarif'
  category: 'code'