gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-12 15:50:15 -08:00
Code Issues Packages Projects Releases Wiki Activity
3,339 Commits 29 Branches 177 Tags
9aabfd2a91e7278384bce7ccc6841a1d2851feb0
Commit Graph

3339 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Samuel Gaist
cb0b3a9279 feat(cli): error out when ignore file cannot be found (#7624) 2024-10-03 04:56:59 +00:00
Aqua Security automated builds
d24640158f release: v0.56.0 [main] (#7447) v0.56.0 2024-10-03 04:55:35 +00:00
Nikita Pivkin
fcaea74080 fix(misconf): not to warn about missing selectors of libraries (#7638) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-10-03 04:27:25 +00:00
Teppei Fukuda
69bf7e00ea feat: support RPM archives (#7628) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-10-02 11:44:17 +00:00
Samuel Gaist
3e1fa21000 fix(secret): change grafana token regex to find them without unquoted (#7627) 2024-10-02 10:06:14 +00:00
simar7
8735242b8f chore(deps): Bump trivy-checks to v1.1.0 (#7631) 2024-10-02 07:51:30 +00:00
simar7
82e2adc6f8 fix(misconf): Disable deprecated checks by default (#7632) 2024-10-02 07:49:08 +00:00
Teppei Fukuda
1faf5297e7 chore: add prefixes to log messages (#7625) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>
 2024-10-02 07:04:11 +00:00
simar7
c0e8da3828 feat(misconf): Support --skip-* for all included modules (#7579) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-10-02 05:20:03 +00:00
Nikita Pivkin
3562529ddf feat: support multiple DB repositories for vulnerability and Java DB (#7605) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-10-01 13:16:06 +00:00
DmitriyLewen
7602d14654 ci: don't use cache for setup-go (#7622) 2024-10-01 07:40:20 +00:00
Teppei Fukuda
d4edeb5d62 test: use loaded image names (#7617) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-10-01 04:27:02 +00:00
DmitriyLewen
b8362321ad feat(java): add empty versions if pom.xml dependency versions can't be detected (#7520) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2024-09-30 14:47:51 +00:00
afdesk
60725f879b feat(secret): enhance secret scanning for python binary files (#7223) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2024-09-30 12:42:46 +00:00
Teppei Fukuda
9d1be410c4 refactor: fix auth error handling (#7615) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-09-30 11:22:59 +00:00
DmitriyLewen
cb16d43b69 ci: split save and restore cache actions (#7614) 2024-09-30 10:42:12 +00:00
Nikita Pivkin
de40df9408 fix(misconf): disable DS016 check for image history analyzer (#7540) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-09-30 04:50:53 +00:00
Marcus Meissner
efdb68d3b9 feat(suse): added SUSE Linux Enterprise Micro support (#7294) 
Signed-off-by: Marcus Meissner <meissner@suse.de>
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2024-09-29 18:23:34 +00:00
Nikita Pivkin
ef0a27d515 feat(misconf): add ability to disable checks by ID (#7536) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: Simar <simar@linux.com>
 2024-09-28 06:31:53 +00:00
Nikita Pivkin
ea0cf0379a fix(misconf): escape all special sequences (#7558) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-09-28 05:06:02 +00:00
Teppei Fukuda
9baf658935 test: use a local registry for remote scanning (#7607) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-09-27 10:32:46 +00:00
Nikita Pivkin
a8fbe46119 fix: allow access to '..' in mapfs (#7575) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-09-27 02:03:46 +00:00
DmitriyLewen
13ef3e7d62 fix(db): check DownloadedAt for trivy-java-db (#7592) 2024-09-26 17:26:50 +00:00
dependabot[bot]
3fa24e890e chore(deps): bump the common group across 1 directory with 20 updates (#7604) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2024-09-26 17:22:38 +00:00
DmitriyLewen
1fdf30a545 ci: add workflow_dispatch trigger for test workflow. (#7606) 2024-09-26 15:42:34 +00:00
DmitriyLewen
fea7250f7f ci: cache test images for integration, VM and module tests (#7599) 2024-09-26 11:40:56 +00:00
Sylvain Baubeau
bbc8e1d8f3 chore(deps): remove broken replaces for opa and discovery (#7600) 2024-09-26 10:11:53 +00:00
simar7
8128ecc9a9 docs(misconf): Add more info on how to use arbitrary JSON/YAML scan feat (#7458) 2024-09-26 05:11:33 +00:00
bloomadcariad
37d549e5b8 fix(misconf): Fixed scope for China Cloud (#7560) 2024-09-23 06:00:51 +00:00
Nikita Pivkin
1f9fc13da4 perf(misconf): use port ranges instead of enumeration (#7549) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-09-20 04:50:12 +00:00
afdesk
5dd94ebc1f fix(sbom): export bom-ref when converting a package to a component (#7340) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: amf <amf@macbook.local>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2024-09-19 05:17:42 +00:00
Nikita Pivkin
dbd2dd6060 refactor(misconf): pass options to Rego scanner as is (#7529) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-09-18 17:41:38 +00:00
DmitriyLewen
aeb7039d7c fix(sbom): parse type framework as library when unmarshalling CycloneDX files (#7527) 2024-09-18 06:08:12 +00:00
Nikita Pivkin
d1d713288f chore(deps): bump go-ebs-file (#7513) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-09-18 06:02:15 +00:00
simar7
56db43c24f fix(misconf): Fix logging typo (#7473) 2024-09-17 04:49:30 +00:00
simar7
f768d3a767 feat(misconf): Register checks only when needed (#7435) 2024-09-17 03:57:10 +00:00
DmitriyLewen
e6f45cd48f refactor: split .egg and packaging analyzers (#7514) 2024-09-16 11:23:41 +00:00
DmitriyLewen
54429497e7 fix(java): use dependencyManagement from root/child pom's for dependencies from parents (#7497) 2024-09-16 11:14:28 +00:00
DmitriyLewen
0efd202724 chore(vex): add CVE-2024-34155, CVE-2024-34156 and CVE-2024-34158 in trivy.openvex.json (#7510) 2024-09-16 07:44:56 +00:00
Lior Kaplan
701dbdaa5d chore(deps): bump alpine from 3.20.0 to 3.20.3 (#7508) 2024-09-16 06:29:55 +00:00
Teppei Fukuda
42748c4037 chore(vex): suppress openssl vulnerabilities (#7500) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-09-16 05:50:52 +00:00
Itay Shakury
04a854c337 docs: refine go docs (#7442) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2024-09-12 07:10:23 +00:00
DmitriyLewen
b0222feeb5 revert(java): stop supporting of test scope for pom.xml files (#7488) 2024-09-12 05:10:13 +00:00
Teppei Fukuda
8876e70655 docs(db): add a manifest example (#7485) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-09-11 08:52:01 +00:00
Pierre Baumard
6472e3c9da feat(license): improve license normalization (#7131) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2024-09-11 06:47:50 +00:00
Squiddim
d589856fdd docs(oci): Add a note About the expected Media Type for the Trivy-DB OCI Artifact (#7449) 2024-09-11 06:32:57 +00:00
DmitriyLewen
7ff9aff273 fix(report): fix error with unmarshal of ExperimentalModifiedFindings (#7463) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2024-09-11 06:16:51 +00:00
Teppei Fukuda
927c6e0c9d fix(report): change a receiver of MarshalJSON (#7483) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-09-11 04:39:09 +00:00
s-reddy1498
dd0a64a1cf fix(oracle): Update EOL date for Oracle 7 (#7480) 2024-09-10 15:02:43 +00:00
dependabot[bot]
3642fe16c9 chore(deps): bump the aws group with 6 updates (#7468) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-10 06:59:34 +00:00