adjustments

tdruez · tdruez · commit e45de1496ea3 · 2026-03-27T15:49:25.000+04:00
Signed-off-by: tdruez &lt;tdruez@aboutcode.org&gt;
diff --git a/.github/workflows/find-vulnerabilities.yml b/.github/workflows/find-vulnerabilities.yml
@@ -28,7 +28,6 @@ jobs:
       - uses: ./
         with:
           pipelines: "scan_codebase,find_vulnerabilities"
-          scancodeio-repo-branch: "main"
           check-compliance: true
           compliance-fail-on-vulnerabilities: true
         env:
diff --git a/.github/workflows/run-android-deploy-to-develop.yml b/.github/workflows/run-android-deploy-to-develop.yml
@@ -22,7 +22,6 @@ jobs:
 
       - uses: ./
         with:
-          scancodeio-repo-branch: "main"
           scancodeio-extras: "android_analysis"
           pipelines: "android_d2d"
           input-urls:
diff --git a/action.yml b/action.yml
@@ -39,7 +39,7 @@ inputs:
     default: "false"
   scancodeio-image:
     description: "ScanCode.io Docker image to use."
-    default: "ghcr.io/aboutcode-org/scancode.io:sha256-057627791ae2748b9ce980b0bd21bd6b521c77b7b2e24c074ef7ba98119a611f"
+    default: "ghcr.io/aboutcode-org/scancode.io@sha256:057627791ae2748b9ce980b0bd21bd6b521c77b7b2e24c074ef7ba98119a611f"
 
 runs:
   using: "composite"
@@ -71,7 +71,7 @@ runs:
         fi
 
         # Pipeline names: alphanumeric, underscores, commas
-        if [[ ! "$INPUT_PIPELINES" =~ ^[a-zA-Z0-9_,[:space:]]+$ ]]; then
+        if [[ ! "$INPUT_PIPELINES" =~ ^[a-zA-Z0-9_,:[:space:]]+$ ]]; then
           echo "::error::Invalid pipelines value: $INPUT_PIPELINES"
           exit 1
         fi
