afdesk
|
9a279fa7bb
|
ci: remove 32bit packages (#4585)
v0.42.1
|
2023-06-08 16:52:37 +03:00 |
|
Teppei Fukuda
|
d52b0b7bc0
|
fix(misconf): deduplicate misconf results (#4588)
|
2023-06-08 15:15:21 +03:00 |
|
Amir Ben Nun
|
9b531fa27b
|
fix(vm): support sector size of 4096 (#4564)
Co-authored-by: masahiro331 <m_fujimura@r.recruit.co.jp>
|
2023-06-08 11:31:13 +03:00 |
|
Teppei Fukuda
|
8ca1bfdd23
|
fix(misconf): terraform relative paths (#4571)
|
2023-06-08 11:24:52 +03:00 |
|
Nikita Pivkin
|
c20d466044
|
fix(purl): skip unsupported library type (#4577)
|
2023-06-08 08:45:32 +03:00 |
|
Jonathan Lassoff
|
52cbe79759
|
fix(terraform): recursively detect all Root Modules (#4457)
Signed-off-by: Simar <simar@linux.com>
Co-authored-by: Simar <simar@linux.com>
|
2023-06-08 07:06:00 +03:00 |
|
Masahiro331
|
4a5b915578
|
fix(vm): support post analyzer for vm command (#4544)
|
2023-06-07 16:16:27 +03:00 |
|
Nikita Pivkin
|
56cdc55f77
|
fix(nodejs): change the type of the devDependencies field (#4560)
|
2023-06-06 15:51:39 +03:00 |
|
Nikita Pivkin
|
17d753676b
|
fix(sbom): export empty dependencies in CycloneDX (#4568)
|
2023-06-06 15:49:23 +03:00 |
|
Teppei Fukuda
|
2796abe1ed
|
refactor: add composite fs for post-analyzers (#4556)
|
2023-06-06 08:19:15 +03:00 |
|
dependabot[bot]
|
22a1573807
|
chore(deps): bump golangci/golangci-lint-action from 3.4.0 to 3.5.0 (#4554)
|
2023-06-04 16:17:54 +03:00 |
|
dependabot[bot]
|
43586659a1
|
chore(deps): bump helm/kind-action from 1.5.0 to 1.7.0 (#4526)
|
2023-06-04 14:50:38 +03:00 |
|
dependabot[bot]
|
5081399659
|
chore(deps): bump github.com/BurntSushi/toml from 1.2.1 to 1.3.0 (#4528)
|
2023-06-04 14:48:41 +03:00 |
|
dependabot[bot]
|
e1a38128ab
|
chore(deps): bump github.com/alicebob/miniredis/v2 from 2.30.2 to 2.30.3 (#4529)
|
2023-06-04 11:19:53 +03:00 |
|
dependabot[bot]
|
283eef6372
|
chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 (#4536)
|
2023-06-04 11:13:44 +03:00 |
|
dependabot[bot]
|
bbd7b98741
|
chore(deps): bump github.com/tetratelabs/wazero from 1.0.0 to 1.2.0 (#4549)
|
2023-06-04 11:12:49 +03:00 |
|
dependabot[bot]
|
11c81bf2f6
|
chore(deps): bump github.com/spf13/cast from 1.5.0 to 1.5.1 (#4532)
|
2023-06-04 11:11:32 +03:00 |
|
dependabot[bot]
|
2d8d63e61a
|
chore(deps): bump github.com/testcontainers/testcontainers-go (#4537)
|
2023-06-04 09:27:43 +03:00 |
|
dependabot[bot]
|
a46839b1ce
|
chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 (#4530)
|
2023-06-04 09:25:43 +03:00 |
|
dependabot[bot]
|
19715f5de8
|
chore(deps): bump github.com/aws/aws-sdk-go-v2/config (#4534)
|
2023-06-04 09:25:04 +03:00 |
|
dependabot[bot]
|
854b63940a
|
chore(deps): bump github.com/sigstore/rekor from 1.2.0 to 1.2.1 (#4533)
v0.42.0
|
2023-06-02 09:36:08 +03:00 |
|
dependabot[bot]
|
59e1a86643
|
chore(deps): bump alpine from 3.17.3 to 3.18.0 (#4525)
|
2023-06-02 09:34:44 +03:00 |
|
Teppei Fukuda
|
9ef01133c8
|
feat: add SBOM analyzer (#4210)
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
|
2023-06-02 09:34:07 +03:00 |
|
DmitriyLewen
|
dadd1e10c2
|
fix(sbom): update logic for work with files in spdx format (#4513)
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
|
2023-06-01 12:52:56 +03:00 |
|
chenk
|
1a658210a4
|
feat: azure workload identity support (#4489)
Signed-off-by: chenk <hen.keinan@gmail.com>
|
2023-06-01 10:16:23 +03:00 |
|
DmitriyLewen
|
411862c908
|
feat(ubuntu): add eol date for 18.04 ESM (#4524)
|
2023-06-01 09:48:33 +03:00 |
|
simar7
|
62a1aaf031
|
fix(misconf): Update required extensions for terraformplan (#4523)
Signed-off-by: Simar <simar@linux.com>
|
2023-06-01 07:23:37 +03:00 |
|
Teppei Fukuda
|
48b2e15c23
|
refactor(cyclonedx): add intermediate representation (#4490)
|
2023-06-01 05:50:47 +03:00 |
|
simar7
|
c15f269a99
|
fix(misconf): Remove debug print while scanning (#4521)
Signed-off-by: Simar <simar@linux.com>
|
2023-06-01 05:28:37 +03:00 |
|
DmitriyLewen
|
b6ee08e55d
|
fix(java): remove duplicates of jar libs (#4515)
Co-authored-by: knqyf263 <knqyf263@gmail.com>
|
2023-05-31 15:09:18 +03:00 |
|
DmitriyLewen
|
d4740401a3
|
fix(java): fix overwriting project props in pom.xml (#4498)
|
2023-05-31 13:16:28 +03:00 |
|
Tung Bui (Leo)
|
4cf2f94d0d
|
docs: Update compilation instructions (#4512)
|
2023-05-31 10:47:56 +03:00 |
|
DmitriyLewen
|
18ce1c3363
|
fix(nodejs): update logic for parsing pnpm lock files (#4502)
|
2023-05-31 08:41:08 +03:00 |
|
DmitriyLewen
|
87eed38c6c
|
fix(secret): remove aws-account-id rule (#4494)
|
2023-05-31 07:00:20 +03:00 |
|
LaurentiuNiculae
|
b0c591ef66
|
feat(oci): add support for referencing an input image by digest (#4470)
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
|
2023-05-31 06:39:42 +03:00 |
|
dependabot[bot]
|
b84b5ecfc2
|
chore(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3 (#4338)
|
2023-05-30 18:50:09 +03:00 |
|
Tej Singh Rana
|
305255a497
|
docs: fixed the format (#4503)
|
2023-05-30 16:37:06 +03:00 |
|
DmitriyLewen
|
d586de585e
|
fix(java): add support of * for exclusions for pom.xml files (#4501)
|
2023-05-30 16:34:54 +03:00 |
|
Anais Urlichs
|
de6eef3b00
|
feat: adding issue template for documentation (#4453)
|
2023-05-30 12:23:05 +03:00 |
|
DmitriyLewen
|
83a9c4a4cf
|
docs: switch glad to ghsa for Go (#4493)
|
2023-05-30 09:46:49 +03:00 |
|
simar7
|
537272257b
|
chore(deps): Update defsec to v0.89.0 (#4474)
|
2023-05-30 06:06:46 +03:00 |
|
simar7
|
6fcd1538d9
|
feat(misconf): Add terraformplan support (#4342)
* feat(misconf): Add terraformplan support
Fixes: https://github.com/aquasecurity/trivy/issues/4341
Signed-off-by: Simar <simar@linux.com>
* update defsec
* fix lint
Signed-off-by: Simar <simar@linux.com>
* remove debug prints
Signed-off-by: Simar <simar@linux.com>
* update tests
Signed-off-by: Simar <simar@linux.com>
---------
Signed-off-by: Simar <simar@linux.com>
|
2023-05-29 14:48:26 -06:00 |
|
DmitriyLewen
|
72e302cf81
|
feat(debian): add digests for dpkg (#4445)
Co-authored-by: knqyf263 <knqyf263@gmail.com>
|
2023-05-28 10:30:58 +03:00 |
|
dependabot[bot]
|
7e99d08a13
|
chore(deps): bump github.com/sigstore/rekor from 1.1.1 to 1.2.0 (#4478)
|
2023-05-28 06:37:30 +03:00 |
|
chenk
|
12a1789be5
|
feat(k8s): exclude node scanning by node labels (#4459)
Signed-off-by: chenk <hen.keinan@gmail.com>
|
2023-05-25 14:52:28 +03:00 |
|
DmitriyLewen
|
919e8c92b2
|
docs: add info about multi-line mode for regexp from custom secret rules (#4159)
|
2023-05-24 14:59:50 +03:00 |
|
Teppei Fukuda
|
50fe43f14c
|
feat(cli): convert JSON reports into a different format (#4452)
Co-authored-by: Aurelien LAJOIE <aurelien.lajoie@kili-technology.com>
|
2023-05-24 11:45:26 +03:00 |
|
DmitriyLewen
|
09db1d4389
|
feat(image): add logic to guess base layer for docker-cis scan (#4344)
|
2023-05-24 10:43:09 +03:00 |
|
afdesk
|
3f0721ff6e
|
fix(cyclonedx): set original names for packages (#4306)
|
2023-05-23 12:35:52 +03:00 |
|
Teppei Fukuda
|
0ef0dadb16
|
feat: group subcommands (#4449)
|
2023-05-23 08:15:39 +03:00 |
|