New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Trivy to version 0.56.2 #4

Merged

fhielpos merged 127 commits into gs-releases from update-0.56.2

Dec 20, 2024

Member

fhielpos commented Dec 20, 2024

Signed-off-by: yusuke.koyoshi yusuke.koyoshi@bizreach.co.jp

yusuke-koyoshi and others added 30 commits

July 31, 2024 07:30


          feat(vm): Support direct filesystem (aquasecurity#7058)

45b3f34

Signed-off-by: yusuke.koyoshi <yusuke.koyoshi@bizreach.co.jp>


          feat(cli)!: delete deprecated SBOM flags (aquasecurity#7266)

Signed-off-by: knqyf263 <knqyf263@gmail.com>


          feat(vm): support the Ext2/Ext3 filesystems (aquasecurity#6983)

35c60f0


          fix(plugin): do not call GitHub content API for releases and tags (aq…

b3ee6da

…uasecurity#7274)

Signed-off-by: knqyf263 <knqyf263@gmail.com>


          fix(java): Return error when trying to find a remote pom to avoid seg…

49d5270

…fault (aquasecurity#7275)

Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>


          fix(flag): incorrect behavior for deprected flag --clear-cache (aqu…

2a0e529

…asecurity#7281)


          refactor(misconf): remove file filtering from parsers (aquasecurity#7289

e95152f

)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          feat(vuln): Add --detection-priority flag for accuracy tuning (aqua…

fd8348d

…security#7288)

Signed-off-by: knqyf263 <knqyf263@gmail.com>


          docs: add auto-generated config (aquasecurity#7261)

555ac8c

Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>


          fix(terraform): add aws_region name to presets (aquasecurity#7184)

bb2e26a


          perf(misconf): do not convert contents of a YAML file to string (aqua…

85dadf5

…security#7292)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          refactor(misconf): remove unused universal scanner (aquasecurity#7293)

13789b7

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          perf(misconf): use json.Valid to check validity of JSON (aquasecurity…

c766831

…#7308)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          fix(misconf): load only submodule if it is specified in source (aquas…

a4180bd

…ecurity#7112)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          feat(misconf): support for policy and bucket grants (aquasecurity#7284)

a817fae

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          fix(misconf): do not set default value for default_cache_behavior (aq…

f0ed5e4

…uasecurity#7234)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          feat(misconf): iterator argument support for dynamic blocks (aquasecu…

fe92072

…rity#7236)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>


          chore(deps): bump the common group across 1 directory with 7 updates (a…

ac3eb9d

…quasecurity#7305)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>


          docs: update client/server docs for misconf and license scanning (aqu…

7278abd

…asecurity#7277)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>


          docs: update links to packaging.python.org (aquasecurity#7318)

65d991c

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          perf(misconf): optimize work with context (aquasecurity#6968)

2b6d8d9

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          refactor: replace ftypes.Gradle with packageurl.TypeGradle (aquasecur…

59c1541

…ity#7323)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          docs: update air-gapped docs (aquasecurity#7160)

08cc14b

Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>


          docs(misconf): Update callsites to use correct naming (aquasecurity#7335

ee339b5


          chore(deps): bump the common group with 9 updates (aquasecurity#7333)

0047dbf

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>


          fix(misconf): change default TLS values for the Azure storage account (…

aadb090

…aquasecurity#7345)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          refactor(misconf): highlight only affected rows (aquasecurity#7310)

0c6687d

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          fix(misconf): wrap Azure PortRange in iac types (aquasecurity#7357)

c5c62d5

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          feat(misconf): scanning support for YAML and JSON (aquasecurity#7311)

efdbd8f

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          feat(misconf): variable support for Terraform Plan (aquasecurity#7228)

db2c955

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>

DmitriyLewen and others added 28 commits

September 26, 2024 17:26


          fix(db): check DownloadedAt for trivy-java-db (aquasecurity#7592)

13ef3e7


          fix: allow access to '..' in mapfs (aquasecurity#7575)

a8fbe46

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          test: use a local registry for remote scanning (aquasecurity#7607)

9baf658

Signed-off-by: knqyf263 <knqyf263@gmail.com>


          fix(misconf): escape all special sequences (aquasecurity#7558)

ea0cf03

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          feat(misconf): add ability to disable checks by ID (aquasecurity#7536)

ef0a27d

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: Simar <simar@linux.com>


          feat(suse): added SUSE Linux Enterprise Micro support (aquasecurity#7294

efdb68d

)

Signed-off-by: Marcus Meissner <meissner@suse.de>
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>


          fix(misconf): disable DS016 check for image history analyzer (aquasec…

de40df9

…urity#7540)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          ci: split save and restore cache actions (aquasecurity#7614)

cb16d43


          refactor: fix auth error handling (aquasecurity#7615)

9d1be41

Signed-off-by: knqyf263 <knqyf263@gmail.com>


          feat(secret): enhance secret scanning for python binary files (aquase…

60725f8

…curity#7223)

Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>


          feat(java): add empty versions if pom.xml dependency versions can't…

b836232

… be detected (aquasecurity#7520)

Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>


          test: use loaded image names (aquasecurity#7617)

d4edeb5

Signed-off-by: knqyf263 <knqyf263@gmail.com>


          ci: don't use cache for setup-go (aquasecurity#7622)

7602d14


          feat: support multiple DB repositories for vulnerability and Java DB (a…

…quasecurity#7605)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          feat(misconf): Support --skip-* for all included modules (aquasecur…

c0e8da3

…ity#7579)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>


          chore: add prefixes to log messages (aquasecurity#7625)

1faf529

Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>


          fix(misconf): Disable deprecated checks by default (aquasecurity#7632)

82e2adc


          chore(deps): Bump trivy-checks to v1.1.0 (aquasecurity#7631)


          fix(secret): change grafana token regex to find them without unquoted (…

3e1fa21

…aquasecurity#7627)


          feat: support RPM archives (aquasecurity#7628)

69bf7e0

Signed-off-by: knqyf263 <knqyf263@gmail.com>


          fix(misconf): not to warn about missing selectors of libraries (aquas…

fcaea74

…ecurity#7638)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>


          release: v0.56.0 [main] (aquasecurity#7447)

d246401


          fix(db): fix javadb downloading error handling [backport: release/v0.…

5dbdadf

…56] (aquasecurity#7646)

Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: Nikita Pivkin <nikita.pivkin@smartforce.io>


          release: v0.56.1 [release/v0.56] (aquasecurity#7648)

95dbf11


          fix(sbom): add options for DBs in private registries [backport: relea…

25d2540

…se/v0.56] (aquasecurity#7691)

Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>


          fix(redhat): include arch in PURL qualifiers [backport: release/v0.56] (

f6700ec

aquasecurity#7702)

Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>


          release: v0.56.2 [release/v0.56] (aquasecurity#7694)

f2252c8


          Make liveness probe configurable (#3)

cf3c724

fhielpos merged commit f235523 into gs-releases

8 checks passed

fhielpos deleted the update-0.56.2 branch

December 20, 2024 12:41

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

25 participants