trivy

mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-12 15:50:15 -08:00

Author	SHA1	Message	Date
Aqua Security automated builds	936f06a578	release: v0.58.2 [release/v0.58] (#8216 ) v0.58.2	2025-01-14 07:38:57 +00:00
Aqua Security automated builds	f72d2bce8d	fix(misconf): allow null values only for tf variables [backport: release/v0.58] (#8238 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: Nikita Pivkin <nikita.pivkin@smartforce.io>	2025-01-13 15:52:41 +00:00
Aqua Security automated builds	289636758e	fix(suse): SUSE - update OSType constants and references for compatility [backport: release/v0.58] (#8237 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com> Co-authored-by: thatipelli santhosh <santhosh.thatipelli@aquasec.com>	2025-01-13 13:31:28 +00:00
Aqua Security automated builds	b733ecc7bc	fix: CVE-2025-21613 and CVE-2025-21614 : go-git: argument injection via the URL field [backport: release/v0.58] (#8215 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: jdesouza <james@fairwinds.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2025-01-08 07:14:54 +00:00
Aqua Security automated builds	7326db14af	release: v0.58.1 [release/v0.58] (#8120 ) v0.58.1	2024-12-24 08:46:29 +00:00
Aqua Security automated builds	03160e4fd1	fix(sbom): attach nested packages to Application [backport: release/v0.58] (#8168 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2024-12-24 08:22:17 +00:00
Aqua Security automated builds	8b930816bc	fix(python): skip dev group's deps for poetry [backport: release/v0.58] (#8158 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: Nikita Pivkin <nikita.pivkin@smartforce.io>	2024-12-23 07:37:07 +00:00
Aqua Security automated builds	18cd1a59cb	fix(sbom): use root package for `unknown` dependencies (if exists) [backport: release/v0.58] (#8156 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-12-23 06:59:48 +00:00
Aqua Security automated builds	1bde3df0ee	chore(deps): bump `golang.org/x/net` from `v0.32.0` to `v0.33.0` [backport: release/v0.58] (#8142 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-12-20 11:30:20 +00:00
Aqua Security automated builds	90f9e884fd	chore(deps): bump `github.com/CycloneDX/cyclonedx-go` from `v0.9.1` to `v0.9.2` [backport: release/v0.58] (#8136 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-12-19 09:57:47 +00:00
Aqua Security automated builds	33818e121f	fix(redhat): correct rewriting of recommendations for the same vulnerability [backport: release/v0.58] (#8135 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-12-19 08:52:58 +00:00
Aqua Security automated builds	89b341f0c6	fix(oracle): add architectures support for advisories [backport: release/v0.58] (#8125 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-12-19 07:42:59 +00:00
Aqua Security automated builds	f842fe1675	fix(sbom): fix wrong overwriting of applications obtained from different sbom files but having same app type [backport: release/v0.58] (#8124 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-12-18 08:03:47 +00:00
Aqua Security automated builds	d52542f3b5	chore(deps): bump golang.org/x/crypto from 0.30.0 to 0.31.0 [backport: release/v0.58] (#8122 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2024-12-18 07:43:58 +00:00
Aqua Security automated builds	9a56e7cd69	fix: handle `BLOW_UNKNOWN` error to download DBs [backport: release/v0.58] (#8121 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-12-18 06:58:00 +00:00
Aqua Security automated builds	4278a09f59	fix(java): correctly overwrite version from depManagement if dependency uses `project.*` props [backport: release/v0.58] (#8119 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-12-18 05:53:44 +00:00
Aqua Security automated builds	cd01f23031	release: v0.58.0 [main] (#7874 ) v0.58.0	2024-12-03 19:05:56 +00:00
Nikita Pivkin	54130dcc1d	fix(misconf): wrap AWS EnvVar to iac types (#7407 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-12-02 23:25:42 +00:00
simar7	a16270c3cc	chore(deps): Upgrade trivy-checks (#8018 )	2024-11-30 06:42:09 +00:00
simar7	511b7d3b50	refactor(misconf): Remove unused options (#7896 ) Signed-off-by: Simar <simar@linux.com>	2024-11-29 08:59:58 +00:00
Teppei Fukuda	eaf8d412e9	docs: add terminology page to explain Trivy concepts (#7996 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-11-29 08:15:24 +00:00
DmitriyLewen	d622ca2b1f	feat: add `workspaceRelationship` (#7889 )	2024-11-29 04:49:41 +00:00
Teppei Fukuda	06279924ca	refactor(sbom): simplify relationship generation (#7985 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-11-28 10:51:04 +00:00
Nikita Pivkin	c238c515b8	chore: remove Go checks (#7907 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-11-27 18:57:09 +00:00
Itay Shakury	745be1aca6	docs: improve databases documentation (#7732 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com> Co-authored-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: wkoot <3715211+wkoot@users.noreply.github.com>	2024-11-27 17:37:17 +00:00
Nikita Pivkin	f5bdc790ee	refactor: remove support for custom Terraform checks (#7901 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>	2024-11-27 02:14:09 +00:00
Teppei Fukuda	ad0ff5daca	docs: fix dead links (#7998 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-11-26 19:19:54 +00:00
Teppei Fukuda	7e2a8cb7ad	docs: drop AWS account scanning (#7997 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-11-26 09:58:34 +00:00
simar7	aeeba70d15	fix(aws): change CPU and Memory type of ContainerDefinition to a string (#7995 )	2024-11-26 06:54:48 +00:00
simar7	4cfb2a97b2	fix(cli): Handle empty ignore files more gracefully (#7962 ) Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>	2024-11-26 06:00:46 +00:00
Nikita Pivkin	fbc42a04ea	fix(misconf): load full Terraform module (#7925 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-11-25 23:27:50 +00:00
Nikita Pivkin	fe3a8971b6	fix(misconf): properly resolve local Terraform cache (#7983 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>	2024-11-25 22:18:39 +00:00
afdesk	44c7fdd7a3	refactor(k8s): add v prefix for Go packages (#7839 )	2024-11-25 22:09:30 +00:00
Nikita Pivkin	5a93a7736b	test: replace Go checks with Rego (#7867 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-11-25 22:04:53 +00:00
Nikita Pivkin	e9a899a3cf	feat(misconf): log causes of HCL file parsing errors (#7634 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: Simar <simar@linux.com> Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>	2024-11-25 19:18:50 +00:00
dependabot[bot]	905430337c	chore(deps): bump the aws group across 1 directory with 7 updates (#7991 ) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-11-25 17:03:50 +00:00
dependabot[bot]	83cb3da3e9	chore(deps): bump github.com/moby/buildkit from 0.17.0 to 0.17.2 in the docker group across 1 directory (#7990 ) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-11-25 17:03:04 +00:00
Thiha Min Thant	53d12bc3b9	chore(deps): update csaf module dependency from csaf-poc to gocsaf (#7992 ) Signed-off-by: Thiha Min Thant <thihaminthant20@gmail.com>	2024-11-25 17:02:29 +00:00
Nikita Pivkin	32951f95bf	chore: downgrade the failed block expand message to debug (#7964 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-11-23 06:50:22 +00:00
Nikita Pivkin	de3b7ea24c	fix(misconf): do not erase variable type for child modules (#7941 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-11-22 19:25:54 +00:00
DmitriyLewen	5448ba2a5c	feat(go): construct dependencies of `go.mod` main module in the parser (#7977 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2024-11-22 12:06:33 +00:00
Teppei Fukuda	bcdc0bbf1f	feat(go): construct dependencies in the parser (#7973 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-11-21 11:05:16 +00:00
Gunesh Shanbhag	e0f2054f9d	feat: add cvss v4 score and vector in scan response (#7968 )	2024-11-21 10:51:55 +00:00
DmitriyLewen	de523ffb76	docs: add `overview` page for `others` (#7972 ) Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>	2024-11-21 08:45:13 +00:00
santhosh1729	461a68afd6	fix(sbom): Fixes for Programming Language Vulnerabilities and SBOM Package Maintainer Details (#7871 )	2024-11-21 07:56:05 +00:00
Jose D. Gomez R.	45d3b40044	feat(suse): Align SUSE/OpenSUSE OS Identifiers (#7965 ) Signed-off-by: Jose D. Gomez R <jose.gomez@suse.com>	2024-11-21 06:19:53 +00:00
dependabot[bot]	9688370c9b	chore(deps): bump the common group with 4 updates (#7949 ) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-11-21 06:06:11 +00:00
DmitriyLewen	b9b383eb27	feat(oracle): add `flavors` support (#7858 )	2024-11-20 10:25:30 +00:00
simar7	9988147b8b	fix(misconf): Update trivy-checks default repo to `mirror.gcr.io` (#7953 )	2024-11-20 05:52:39 +00:00
simar7	6565bef049	chore(deps): Bump up trivy-checks to v1.3.0 (#7959 )	2024-11-20 05:37:10 +00:00

1 2 3 4 5 ...

3266 Commits