Releases: DmitriyLewen/trivy
Releases · DmitriyLewen/trivy
v0.42.5
Changelog
- 3eecd0f ci: add
genericdir to deploy-deb.sh - 83c91bf ci: update settings to work with fork
- 8016b82 fix(fs): handle default skip dirs properly (aquasecurity#6628)
- 7a25dad fix(misconf): load cached tf modules (aquasecurity#6607)
- 9c794c0 fix(misconf): do not use semver for parsing tf module versions (aquasecurity#6614)
- 14c1024 refactor: move setting scanners when using compliance reports to flag parsing (aquasecurity#6619)
- 998f750 feat: introduce package UIDs for improved vulnerability mapping (aquasecurity#6583)
- 770b141 perf(misconf): Improve cause performance (aquasecurity#6586)
- 3ccb1a0 docs: trivy-k8s new experiance remove un-used section (aquasecurity#6608)
- 58cfd1b chore(deps): bump github.com/docker/docker from 26.0.1+incompatible to 26.0.2+incompatible (aquasecurity#6612)
- 715963d docs: remove mention of GitLab Gold because it doesn't exist anymore (aquasecurity#6609)
- 37da98d feat(misconf): Use updated terminology for misconfiguration checks (aquasecurity#6476)
- cdee703 chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.15.15 to 1.16.15 (aquasecurity#6593)
- 6a2225b docs: use
genericlink fromtrivy-repo(aquasecurity#6606) - a2a02de docs: update trivy k8s with new experience (aquasecurity#6465)
- e739ab8 feat: support
--skip-imagesscanning flag (aquasecurity#6334) - c6d5d85 BREAKING: add support for k8s
disable-node-collectorflag (aquasecurity#6311) - 194a814 chore(deps): bump github.com/zclconf/go-cty from 1.14.1 to 1.14.4 (aquasecurity#6601)
- 03830c5 chore(deps): bump github.com/sigstore/rekor from 1.2.2 to 1.3.6 (aquasecurity#6599)
- 8e814fa chore(deps): bump google.golang.org/protobuf from 1.33.0 to 1.34.0 (aquasecurity#6597)
- 2dc76ba chore(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0 (aquasecurity#6588)
- c17176b chore(deps): bump github.com/testcontainers/testcontainers-go from 0.28.0 to 0.30.0 (aquasecurity#6595)
- bce70af chore(deps): bump github.com/open-policy-agent/opa from 0.62.0 to 0.64.1 (aquasecurity#6596)
- 4369a19 feat: add ubuntu 23.10 and 24.04 support (aquasecurity#6573)
- 5566548 chore(deps): bump azure/setup-helm from 3.5 to 4 (aquasecurity#6590)
- a8af76a chore(deps): bump actions/checkout from 4.1.2 to 4.1.4 (aquasecurity#6587)
- c8ed432 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ecr from 1.24.6 to 1.27.4 (aquasecurity#6598)
- 551a46e docs(go): add stdlib (aquasecurity#6580)
- 261649b chore(deps): bump github.com/containerd/containerd from 1.7.13 to 1.7.16 (aquasecurity#6592)
- acfddd4 chore(deps): bump github.com/go-openapi/runtime from 0.27.1 to 0.28.0 (aquasecurity#6600)
- 419e3d2 feat(go): parse main mod version from build info settings (aquasecurity#6564)
- f0961d5 feat: respect custom exit code from plugin (aquasecurity#6584)
- a5d485c docs: add asdf and mise installation method (aquasecurity#6063)
- 29b8faf feat(vuln): Handle scanning conan v2.x lockfiles (aquasecurity#6357)
- e3bef02 feat: add support
environment.yamlfiles (aquasecurity#6569) - 916f6c6 fix: close plugin.yaml (aquasecurity#6577)
- 8e6cd0e fix: trivy k8s avoid deleting non-default node collector namespace (aquasecurity#6559)
- 060d0bb BREAKING: support exclude
kinds/namespacesand includekinds/namespaces(aquasecurity#6323) - 2d090ef feat(go): add main module (aquasecurity#6574)
- 6343e4f feat: add relationships (aquasecurity#6563)
- a018ee1 ci: disable
Gocache forreusable-release.yaml(aquasecurity#6572) - 5da053f docs: mention
--show-suppressedis available in table (aquasecurity#6571) - 3d66cb8 chore: fix sqlite to support loong64 (aquasecurity#6511)
- 9aca98c fix(debian): sort dpkg info before parsing due to exclude directories (aquasecurity#6551)
- 7811ad0 docs: update info about config file (aquasecurity#6547)
- fae710d docs: remove RELEASE_VERSION from trivy.repo (aquasecurity#6546)
- d2d4022 fix(sbom): change error to warning for multiple OSes (aquasecurity#6541)
- 164b025 fix(vuln): skip empty versions (aquasecurity#6542)
- 5dd9bd4 feat(c): add license support for conan lock files (aquasecurity#6329)
- 7c2017f fix(terraform): Attribute and fileset fixes (aquasecurity#6544)
- 63c9469 refactor: change warning if no vulnerability details are found (aquasecurity#6230)
- aa822c2 refactor(misconf): improve error handling in the Rego scanner (aquasecurity#6527)
- 30cc88f ci: use tmp dir inside Trivy repo dir for GoReleaser (aquasecurity#6533)
- e32215c feat(go): parse main module of go binary files (aquasecurity#6530)
- d4da83c chore(deps): bump golang.org/x/net from 0.21.0 to 0.23.0 (aquasecurity#6526)
- 0d7d97d refactor(misconf): simplify the retrieval of module annotations (aquasecurity#6528)
- 9873cf3 chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (aquasecurity#6523)
- 95c8fd9 docs(nodejs): add info about supported versions of pnpm lock files (aquasecurity#6510)
- 12ec0df feat(misconf): loading embedded checks as a fallback (aquasecurity#6502)
- 9b7d713 fix(misconf): Parse JSON k8s manifests properly (aquasecurity#6490)
- 13e72ec refactor: remove parallel walk (aquasecurity#5180)
- a986199 fix: close pom.xml (aquasecurity#6507)
- 46d5aba fix(secret): convert severity for custom rules (aquasecurity#6500)
- 34ab09d fix(java): update logic to detect
pom.xmlfile snapshot artifacts from remote repositories (aquasecurity#6412) - 1ba5b59 fix: typo (aquasecurity#6283)
- 4fab0f8 docs(k8s,image): fix command-line syntax issues (aquasecurity#6403)
- d770981 chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (aquasecurity#6435)
- 4337068 fix(misconf): avoid panic if the scheme is not valid (aquasecurity#6496)
- d82d6cb feat(image): goversion as stdlib (aquasecurity#6277)
- cfddfb3 fix: add color for error inside of log message (aquasecurity#6493)
- dfcb0f9 chore(deps): bump actions/add-to-project from 0.4.1 to 1.0.0 (aquasecurity#6438)
- 183eaaf docs: fix links to OPA docs (aquasecurity#6480)
- 94d6e8c refactor: replace zap with slog (aquasecurity#6466)
- 336c47e docs: update links to IaC schemas (aquasecurity#6477)
- 06b4473 chore: bump Go to 1.22 (aquasecurity#6075)
- a51cedd refactor(terraform): sync funcs with Terraform (aquasecurity#6415)
- 53517d6 feat(misconf): add helm-api-version and helm-kube-version flag (aquasecurity#6332)
- ad544e9 chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.4.0 to 1.5.1 (aquasecurity#6426)
- 089368d chore(deps): bump github.com/go-openapi/strfmt from 0.22.0 to 0.23.0 (aquasecurity#6452)
- 1163565 chore(deps): bump github.com/hashicorp/golang-lru/v2 from 2.0.6 to 2.0.7 (aquasecurity#6430)
- 637da2b chore(deps): bump aquaproj/aqua-installer from 2.2.0 to 3.0.0 (aquasecurity#6437)
- 13190e9 fix(terraform): eval submodules (aquasecurity#6411)
- 6bca7c3 refactor(terraform): remove unused options (aquasecurity#6446)
- 8e4279b refactor(terraform): remove unused file (aquasecurity#6445)
- e98c873 chore(deps): bump github.com/testcontainers/testcontainers-go to v0.28.0 (aquasecurity#6387)
- b1c2eab chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.9.0 to 1.10.0 (aquasecurity#6427)
- 1c49a16 fix(misconf): Escape template value correctly (aquasecurity#6292)
- 8dd0fcd feat(misconf): add support for wildcard ignores (aquasecurity#6414)
- 74e4c6e fix(cloudformation): resolve
DedicatedMasterEnabledparsing issue (aquasecurity#6439) - 245c120 refactor(terraform): remove metrics collection (aquasecurity#6444)
- 86714bf feat(cloudformation): add support for logging and endpoint access for EKS (aquasecurity#6440)
- a758392 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.1 to 1.53.1 (aquasecurity#6424)
- 4d00d8b chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.4 to 1.27.10 (aquasecurity#6428)
- 3ad2b3e chore(deps): bump go.etcd.io/bbolt from 1.3.8 to 1.3.9 (aquasecurity#6429)
- 8baccd7 fix(db): check schema version for image name only (aquasecurity#6410)
- e75a90f chore(deps): bump github.com/google/wire from 0.5.0 to 0.6.0 (aquasecurity#6425)
- 6625bd3 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.149.1 to 1.155.1 (aquasecurity#6433)
- 826fe60 chore(deps): bump actions/cache from 4.0.0 to 4.0.2 (aquasecurity#6436)
- f23ed77 feat(misconf): Support private registries for misconf check bundle (aquasecurity#6327)
- df024e8 feat(cloudformation): inline ignore support for YAML templates (aquasecurity#6358)
- 29dee32 feat(terraform): ignore resources by nested attributes (aquasecurity#6302)
- 1a67472 perf(helm): load in-memory files (aquasecurity#6383)
- 09e37b7 feat(aws): apply filter options to result (aquasecurity#6367)
- 87a9aa6 feat(aws): quiet flag support (aquasecurity#6331)
- 712dcd3 fix(misconf): clear location URI for SARIF (aquasecurity#6405)
- 625f22b test(cloudformation): add CF tests (aquasecurity#6315)
- 6a2f6fd fix(cloudformation): infer type after resolving a function (aquasecurity#6406)
- 5f69937 fix(sbom): fix error when parent of SPDX Relationships is not a package. (aquasecurity#6399)
- 258d153 fix(nodejs): merge
Indirect,Dev,ExternalReferencesfields for same deps frompackage-lock.jsonfiles v2 or later (aquasecurity#6356) - ade033a docs: add info about support for package license detection in
fs/repomodes (aquasecurity#6381) - f85c9fa fix(nodejs): add support for parsing
workspacesfrompackage.jsonas an object (aquasecurity#6231) - 9d7f5c9 fix: use
0600perms for tmp files for post analyzers (aquasecurity#6386) - f148eb1 fix(helm): scan the subcharts once (aquasecurity#6382)
- 97f95c4 docs(terraform): add file patterns for Terraform Plan (aquasecurity#6393)
- abd62ae fix(terraform): сhecking SSE encryption algorithm validity (aquasecurity#6341)
- 7c409fd fix(java): parse modules from
pom.xmlfiles once (aquasecurity#6312) - 1b68327 chore(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible (aquasecurity#6364)
- a2482c1 fix(server): add Locations for
Packagesin client/server mode (aquasecurity#6366) - e866bd5 fix(sbom): add check for
CreationInfoto nil when detecting SPDX created using Trivy (aquasecurity#6346) - 1870f28 fix(report): don't include empty strings in
.vulnerabilities[].identifiers[].urlwhengitlab.tplis used (aquasecurity#6348) - 6c81e55 chore(ubuntu): Add Ubuntu 22.04 EOL date (aquasecurity#6371)
- 8ec3938 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 (aquasecurity#6321)
- f6c5d58 feat(java): add support licenses and graph for gradle lock files (aquasecurity#6140)
- c4022d6 feat(vex): consider root component for relationships (aquasecurity#6313)
- 3177924 fix: increase the default buffer size for scanning dpkg status files by 2 times (aquasecurity#6298)
- dd9620e chore: updates wazero to v1.7.0 (aquasecurity#6301)
- eb3ceb3 feat(sbom): Support license detection for SBOM scan (aquasecurity#6072)
- ab74caa refactor(sbom): use intermediate representation for SPDX (aquasecurity#6310)
- 71da44f docs(terraform): improve documentation for filtering by inline comments (aquasecurity#6284)
- 102b6df fix(terraform): fix policy document retrieval (aquasecurity#6276)
- aa19aaf refactor(terraform): remove unused custom error (aquasecurity#6303)
- 8fcef35 refactor(sbom): add intermediate representation for BO...
v0.42.1
Changelog
- 4773d19 update release files for fork
- f0961d5 feat: respect custom exit code from plugin (aquasecurity#6584)
- a5d485c docs: add asdf and mise installation method (aquasecurity#6063)
- 29b8faf feat(vuln): Handle scanning conan v2.x lockfiles (aquasecurity#6357)
- e3bef02 feat: add support
environment.yamlfiles (aquasecurity#6569) - 916f6c6 fix: close plugin.yaml (aquasecurity#6577)
- 8e6cd0e fix: trivy k8s avoid deleting non-default node collector namespace (aquasecurity#6559)
- 060d0bb BREAKING: support exclude
kinds/namespacesand includekinds/namespaces(aquasecurity#6323) - 2d090ef feat(go): add main module (aquasecurity#6574)
- 6343e4f feat: add relationships (aquasecurity#6563)
- a018ee1 ci: disable
Gocache forreusable-release.yaml(aquasecurity#6572) - 5da053f docs: mention
--show-suppressedis available in table (aquasecurity#6571) - 3d66cb8 chore: fix sqlite to support loong64 (aquasecurity#6511)
- 9aca98c fix(debian): sort dpkg info before parsing due to exclude directories (aquasecurity#6551)
- 7811ad0 docs: update info about config file (aquasecurity#6547)
- fae710d docs: remove RELEASE_VERSION from trivy.repo (aquasecurity#6546)
- d2d4022 fix(sbom): change error to warning for multiple OSes (aquasecurity#6541)
- 164b025 fix(vuln): skip empty versions (aquasecurity#6542)
- 5dd9bd4 feat(c): add license support for conan lock files (aquasecurity#6329)
- 7c2017f fix(terraform): Attribute and fileset fixes (aquasecurity#6544)
- 63c9469 refactor: change warning if no vulnerability details are found (aquasecurity#6230)
- aa822c2 refactor(misconf): improve error handling in the Rego scanner (aquasecurity#6527)
- 30cc88f ci: use tmp dir inside Trivy repo dir for GoReleaser (aquasecurity#6533)
- e32215c feat(go): parse main module of go binary files (aquasecurity#6530)
- d4da83c chore(deps): bump golang.org/x/net from 0.21.0 to 0.23.0 (aquasecurity#6526)
- 0d7d97d refactor(misconf): simplify the retrieval of module annotations (aquasecurity#6528)
- 9873cf3 chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (aquasecurity#6523)
- 95c8fd9 docs(nodejs): add info about supported versions of pnpm lock files (aquasecurity#6510)
- 12ec0df feat(misconf): loading embedded checks as a fallback (aquasecurity#6502)
- 9b7d713 fix(misconf): Parse JSON k8s manifests properly (aquasecurity#6490)
- 13e72ec refactor: remove parallel walk (aquasecurity#5180)
- a986199 fix: close pom.xml (aquasecurity#6507)
- 46d5aba fix(secret): convert severity for custom rules (aquasecurity#6500)
- 34ab09d fix(java): update logic to detect
pom.xmlfile snapshot artifacts from remote repositories (aquasecurity#6412) - 1ba5b59 fix: typo (aquasecurity#6283)
- 4fab0f8 docs(k8s,image): fix command-line syntax issues (aquasecurity#6403)
- d770981 chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (aquasecurity#6435)
- 4337068 fix(misconf): avoid panic if the scheme is not valid (aquasecurity#6496)
- d82d6cb feat(image): goversion as stdlib (aquasecurity#6277)
- cfddfb3 fix: add color for error inside of log message (aquasecurity#6493)
- dfcb0f9 chore(deps): bump actions/add-to-project from 0.4.1 to 1.0.0 (aquasecurity#6438)
- 183eaaf docs: fix links to OPA docs (aquasecurity#6480)
- 94d6e8c refactor: replace zap with slog (aquasecurity#6466)
- 336c47e docs: update links to IaC schemas (aquasecurity#6477)
- 06b4473 chore: bump Go to 1.22 (aquasecurity#6075)
- a51cedd refactor(terraform): sync funcs with Terraform (aquasecurity#6415)
- 53517d6 feat(misconf): add helm-api-version and helm-kube-version flag (aquasecurity#6332)
- ad544e9 chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.4.0 to 1.5.1 (aquasecurity#6426)
- 089368d chore(deps): bump github.com/go-openapi/strfmt from 0.22.0 to 0.23.0 (aquasecurity#6452)
- 1163565 chore(deps): bump github.com/hashicorp/golang-lru/v2 from 2.0.6 to 2.0.7 (aquasecurity#6430)
- 637da2b chore(deps): bump aquaproj/aqua-installer from 2.2.0 to 3.0.0 (aquasecurity#6437)
- 13190e9 fix(terraform): eval submodules (aquasecurity#6411)
- 6bca7c3 refactor(terraform): remove unused options (aquasecurity#6446)
- 8e4279b refactor(terraform): remove unused file (aquasecurity#6445)
- e98c873 chore(deps): bump github.com/testcontainers/testcontainers-go to v0.28.0 (aquasecurity#6387)
- b1c2eab chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.9.0 to 1.10.0 (aquasecurity#6427)
- 1c49a16 fix(misconf): Escape template value correctly (aquasecurity#6292)
- 8dd0fcd feat(misconf): add support for wildcard ignores (aquasecurity#6414)
- 74e4c6e fix(cloudformation): resolve
DedicatedMasterEnabledparsing issue (aquasecurity#6439) - 245c120 refactor(terraform): remove metrics collection (aquasecurity#6444)
- 86714bf feat(cloudformation): add support for logging and endpoint access for EKS (aquasecurity#6440)
- a758392 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.1 to 1.53.1 (aquasecurity#6424)
- 4d00d8b chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.4 to 1.27.10 (aquasecurity#6428)
- 3ad2b3e chore(deps): bump go.etcd.io/bbolt from 1.3.8 to 1.3.9 (aquasecurity#6429)
- 8baccd7 fix(db): check schema version for image name only (aquasecurity#6410)
- e75a90f chore(deps): bump github.com/google/wire from 0.5.0 to 0.6.0 (aquasecurity#6425)
- 6625bd3 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.149.1 to 1.155.1 (aquasecurity#6433)
- 826fe60 chore(deps): bump actions/cache from 4.0.0 to 4.0.2 (aquasecurity#6436)
- f23ed77 feat(misconf): Support private registries for misconf check bundle (aquasecurity#6327)
- df024e8 feat(cloudformation): inline ignore support for YAML templates (aquasecurity#6358)
- 29dee32 feat(terraform): ignore resources by nested attributes (aquasecurity#6302)
- 1a67472 perf(helm): load in-memory files (aquasecurity#6383)
- 09e37b7 feat(aws): apply filter options to result (aquasecurity#6367)
- 87a9aa6 feat(aws): quiet flag support (aquasecurity#6331)
- 712dcd3 fix(misconf): clear location URI for SARIF (aquasecurity#6405)
- 625f22b test(cloudformation): add CF tests (aquasecurity#6315)
- 6a2f6fd fix(cloudformation): infer type after resolving a function (aquasecurity#6406)
- 5f69937 fix(sbom): fix error when parent of SPDX Relationships is not a package. (aquasecurity#6399)
- 258d153 fix(nodejs): merge
Indirect,Dev,ExternalReferencesfields for same deps frompackage-lock.jsonfiles v2 or later (aquasecurity#6356) - ade033a docs: add info about support for package license detection in
fs/repomodes (aquasecurity#6381) - f85c9fa fix(nodejs): add support for parsing
workspacesfrompackage.jsonas an object (aquasecurity#6231) - 9d7f5c9 fix: use
0600perms for tmp files for post analyzers (aquasecurity#6386) - f148eb1 fix(helm): scan the subcharts once (aquasecurity#6382)
- 97f95c4 docs(terraform): add file patterns for Terraform Plan (aquasecurity#6393)
- abd62ae fix(terraform): сhecking SSE encryption algorithm validity (aquasecurity#6341)
- 7c409fd fix(java): parse modules from
pom.xmlfiles once (aquasecurity#6312) - 1b68327 chore(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible (aquasecurity#6364)
- a2482c1 fix(server): add Locations for
Packagesin client/server mode (aquasecurity#6366) - e866bd5 fix(sbom): add check for
CreationInfoto nil when detecting SPDX created using Trivy (aquasecurity#6346) - 1870f28 fix(report): don't include empty strings in
.vulnerabilities[].identifiers[].urlwhengitlab.tplis used (aquasecurity#6348) - 6c81e55 chore(ubuntu): Add Ubuntu 22.04 EOL date (aquasecurity#6371)
- 8ec3938 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 (aquasecurity#6321)
- f6c5d58 feat(java): add support licenses and graph for gradle lock files (aquasecurity#6140)
- c4022d6 feat(vex): consider root component for relationships (aquasecurity#6313)
- 3177924 fix: increase the default buffer size for scanning dpkg status files by 2 times (aquasecurity#6298)
- dd9620e chore: updates wazero to v1.7.0 (aquasecurity#6301)
- eb3ceb3 feat(sbom): Support license detection for SBOM scan (aquasecurity#6072)
- ab74caa refactor(sbom): use intermediate representation for SPDX (aquasecurity#6310)
- 71da44f docs(terraform): improve documentation for filtering by inline comments (aquasecurity#6284)
- 102b6df fix(terraform): fix policy document retrieval (aquasecurity#6276)
- aa19aaf refactor(terraform): remove unused custom error (aquasecurity#6303)
- 8fcef35 refactor(sbom): add intermediate representation for BOM (aquasecurity#6240)
- fb8c516 fix(amazon): check only major version of AL to find advisories (aquasecurity#6295)
- 96bd7ac fix(db): use schema version as tag only for
trivy-dbandtrivy-java-dbregistries by default (aquasecurity#6219) - 12c5bf0 fix(nodejs): add name validation for package name from
package.json(aquasecurity#6268) - d6c40ce docs: Added install instructions for FreeBSD (aquasecurity#6293)
- 9d2057a feat(image): customer podman host or socket option (aquasecurity#6256)
- 2a9d9bd chore(deps): bump wazero from 1.2.1 to 1.6.0 (aquasecurity#6290)
- 617c3e3 feat(java): mark dependencies from
maven-invoker-pluginintegration tests pom.xml files asDev(aquasecurity#6213) - 56cedc0 fix(license): reorder logic of how python package licenses are acquired (aquasecurity#6220)
- d7d7265 test(terraform): skip cached modules (aquasecurity#6281)
- 6639911 feat(secret): Support for detecting Hugging Face Access Tokens (aquasecurity#6236)
- 337cb75 fix(cloudformation): support of all SSE algorithms for s3 (aquasecurity#6270)
- 9361cdb feat(terraform): Terraform Plan snapshot scanning support (aquasecurity#6176)
- ee01e6e chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.26.6 to 1.27.4 (aquasecurity#6249)
- 3d2f583 fix: typo function name and comment optimization (aquasecurity#6200)
- c4b5ab7 fix(java): don't ignore runtime scope for pom.xml files (aquasecurity#6223)
- 355c1b5 chore(deps): bump helm/kind-action from 1.8.0 to 1.9.0 (aquasecurity#6242)
- 7244ece chore(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 (aquasecurity#6243)
- 5cd0566 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.48.1 to 1.51.1 (aquasecurity#6251)
- ebb74a5 chore(deps): bump github.com/hashicorp/go-uuid from 1.0.1 to 1.0.3 (aquasecurity#6253)
- 24a8d6a chore(deps): bump github.com/open-policy-agent/opa from 0.61.0 to 0.62.0 (aquasecurity#6250)
- 9d0d7ad chore(deps): bump github.com/containerd/containerd from 1.7.12 to 1.7.13 (aquasecurity#6247)
- e8230e1 chore(deps): bump go.uber.org/zap from 1.26.0 to 1.27.0 (aquasecurity#6246)
- 04535b5 fix(license): add FilePath to results to allow for license path filtering via trivyignore file (aquasecurity#6215)
- 939e34e chore(deps): Upgrade iac deps (aquasecurity#6255)
- 7cb6c02 feat: add info log message about dev deps suppression (aquasecurity#6211)
- c1d26ec test(k8s): use test-db for k8s integration tests (aquasecurity#6222)
- 4f70468 ci: add maximize-build-space for
Testjob (aquasecurity#6221) - 1dfece8 fix(terraform): fix root module search (aquasecurity#6160)
- e1ea02c test(parser): squash test data for yarn (aquasecurity#6203)
- 64926d8 fix(terraform): do not re-e...
v0.42.0
Changelog
- 4773d19 update release files for fork
- f0961d5 feat: respect custom exit code from plugin (aquasecurity#6584)
- a5d485c docs: add asdf and mise installation method (aquasecurity#6063)
- 29b8faf feat(vuln): Handle scanning conan v2.x lockfiles (aquasecurity#6357)
- e3bef02 feat: add support
environment.yamlfiles (aquasecurity#6569) - 916f6c6 fix: close plugin.yaml (aquasecurity#6577)
- 8e6cd0e fix: trivy k8s avoid deleting non-default node collector namespace (aquasecurity#6559)
- 060d0bb BREAKING: support exclude
kinds/namespacesand includekinds/namespaces(aquasecurity#6323) - 2d090ef feat(go): add main module (aquasecurity#6574)
- 6343e4f feat: add relationships (aquasecurity#6563)
- a018ee1 ci: disable
Gocache forreusable-release.yaml(aquasecurity#6572) - 5da053f docs: mention
--show-suppressedis available in table (aquasecurity#6571) - 3d66cb8 chore: fix sqlite to support loong64 (aquasecurity#6511)
- 9aca98c fix(debian): sort dpkg info before parsing due to exclude directories (aquasecurity#6551)
- 7811ad0 docs: update info about config file (aquasecurity#6547)
- fae710d docs: remove RELEASE_VERSION from trivy.repo (aquasecurity#6546)
- d2d4022 fix(sbom): change error to warning for multiple OSes (aquasecurity#6541)
- 164b025 fix(vuln): skip empty versions (aquasecurity#6542)
- 5dd9bd4 feat(c): add license support for conan lock files (aquasecurity#6329)
- 7c2017f fix(terraform): Attribute and fileset fixes (aquasecurity#6544)
- 63c9469 refactor: change warning if no vulnerability details are found (aquasecurity#6230)
- aa822c2 refactor(misconf): improve error handling in the Rego scanner (aquasecurity#6527)
- 30cc88f ci: use tmp dir inside Trivy repo dir for GoReleaser (aquasecurity#6533)
- e32215c feat(go): parse main module of go binary files (aquasecurity#6530)
- d4da83c chore(deps): bump golang.org/x/net from 0.21.0 to 0.23.0 (aquasecurity#6526)
- 0d7d97d refactor(misconf): simplify the retrieval of module annotations (aquasecurity#6528)
- 9873cf3 chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (aquasecurity#6523)
- 95c8fd9 docs(nodejs): add info about supported versions of pnpm lock files (aquasecurity#6510)
- 12ec0df feat(misconf): loading embedded checks as a fallback (aquasecurity#6502)
- 9b7d713 fix(misconf): Parse JSON k8s manifests properly (aquasecurity#6490)
- 13e72ec refactor: remove parallel walk (aquasecurity#5180)
- a986199 fix: close pom.xml (aquasecurity#6507)
- 46d5aba fix(secret): convert severity for custom rules (aquasecurity#6500)
- 34ab09d fix(java): update logic to detect
pom.xmlfile snapshot artifacts from remote repositories (aquasecurity#6412) - 1ba5b59 fix: typo (aquasecurity#6283)
- 4fab0f8 docs(k8s,image): fix command-line syntax issues (aquasecurity#6403)
- d770981 chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (aquasecurity#6435)
- 4337068 fix(misconf): avoid panic if the scheme is not valid (aquasecurity#6496)
- d82d6cb feat(image): goversion as stdlib (aquasecurity#6277)
- cfddfb3 fix: add color for error inside of log message (aquasecurity#6493)
- dfcb0f9 chore(deps): bump actions/add-to-project from 0.4.1 to 1.0.0 (aquasecurity#6438)
- 183eaaf docs: fix links to OPA docs (aquasecurity#6480)
- 94d6e8c refactor: replace zap with slog (aquasecurity#6466)
- 336c47e docs: update links to IaC schemas (aquasecurity#6477)
- 06b4473 chore: bump Go to 1.22 (aquasecurity#6075)
- a51cedd refactor(terraform): sync funcs with Terraform (aquasecurity#6415)
- 53517d6 feat(misconf): add helm-api-version and helm-kube-version flag (aquasecurity#6332)
- ad544e9 chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.4.0 to 1.5.1 (aquasecurity#6426)
- 089368d chore(deps): bump github.com/go-openapi/strfmt from 0.22.0 to 0.23.0 (aquasecurity#6452)
- 1163565 chore(deps): bump github.com/hashicorp/golang-lru/v2 from 2.0.6 to 2.0.7 (aquasecurity#6430)
- 637da2b chore(deps): bump aquaproj/aqua-installer from 2.2.0 to 3.0.0 (aquasecurity#6437)
- 13190e9 fix(terraform): eval submodules (aquasecurity#6411)
- 6bca7c3 refactor(terraform): remove unused options (aquasecurity#6446)
- 8e4279b refactor(terraform): remove unused file (aquasecurity#6445)
- e98c873 chore(deps): bump github.com/testcontainers/testcontainers-go to v0.28.0 (aquasecurity#6387)
- b1c2eab chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.9.0 to 1.10.0 (aquasecurity#6427)
- 1c49a16 fix(misconf): Escape template value correctly (aquasecurity#6292)
- 8dd0fcd feat(misconf): add support for wildcard ignores (aquasecurity#6414)
- 74e4c6e fix(cloudformation): resolve
DedicatedMasterEnabledparsing issue (aquasecurity#6439) - 245c120 refactor(terraform): remove metrics collection (aquasecurity#6444)
- 86714bf feat(cloudformation): add support for logging and endpoint access for EKS (aquasecurity#6440)
- a758392 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.1 to 1.53.1 (aquasecurity#6424)
- 4d00d8b chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.4 to 1.27.10 (aquasecurity#6428)
- 3ad2b3e chore(deps): bump go.etcd.io/bbolt from 1.3.8 to 1.3.9 (aquasecurity#6429)
- 8baccd7 fix(db): check schema version for image name only (aquasecurity#6410)
- e75a90f chore(deps): bump github.com/google/wire from 0.5.0 to 0.6.0 (aquasecurity#6425)
- 6625bd3 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.149.1 to 1.155.1 (aquasecurity#6433)
- 826fe60 chore(deps): bump actions/cache from 4.0.0 to 4.0.2 (aquasecurity#6436)
- f23ed77 feat(misconf): Support private registries for misconf check bundle (aquasecurity#6327)
- df024e8 feat(cloudformation): inline ignore support for YAML templates (aquasecurity#6358)
- 29dee32 feat(terraform): ignore resources by nested attributes (aquasecurity#6302)
- 1a67472 perf(helm): load in-memory files (aquasecurity#6383)
- 09e37b7 feat(aws): apply filter options to result (aquasecurity#6367)
- 87a9aa6 feat(aws): quiet flag support (aquasecurity#6331)
- 712dcd3 fix(misconf): clear location URI for SARIF (aquasecurity#6405)
- 625f22b test(cloudformation): add CF tests (aquasecurity#6315)
- 6a2f6fd fix(cloudformation): infer type after resolving a function (aquasecurity#6406)
- 5f69937 fix(sbom): fix error when parent of SPDX Relationships is not a package. (aquasecurity#6399)
- 258d153 fix(nodejs): merge
Indirect,Dev,ExternalReferencesfields for same deps frompackage-lock.jsonfiles v2 or later (aquasecurity#6356) - ade033a docs: add info about support for package license detection in
fs/repomodes (aquasecurity#6381) - f85c9fa fix(nodejs): add support for parsing
workspacesfrompackage.jsonas an object (aquasecurity#6231) - 9d7f5c9 fix: use
0600perms for tmp files for post analyzers (aquasecurity#6386) - f148eb1 fix(helm): scan the subcharts once (aquasecurity#6382)
- 97f95c4 docs(terraform): add file patterns for Terraform Plan (aquasecurity#6393)
- abd62ae fix(terraform): сhecking SSE encryption algorithm validity (aquasecurity#6341)
- 7c409fd fix(java): parse modules from
pom.xmlfiles once (aquasecurity#6312) - 1b68327 chore(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible (aquasecurity#6364)
- a2482c1 fix(server): add Locations for
Packagesin client/server mode (aquasecurity#6366) - e866bd5 fix(sbom): add check for
CreationInfoto nil when detecting SPDX created using Trivy (aquasecurity#6346) - 1870f28 fix(report): don't include empty strings in
.vulnerabilities[].identifiers[].urlwhengitlab.tplis used (aquasecurity#6348) - 6c81e55 chore(ubuntu): Add Ubuntu 22.04 EOL date (aquasecurity#6371)
- 8ec3938 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 (aquasecurity#6321)
- f6c5d58 feat(java): add support licenses and graph for gradle lock files (aquasecurity#6140)
- c4022d6 feat(vex): consider root component for relationships (aquasecurity#6313)
- 3177924 fix: increase the default buffer size for scanning dpkg status files by 2 times (aquasecurity#6298)
- dd9620e chore: updates wazero to v1.7.0 (aquasecurity#6301)
- eb3ceb3 feat(sbom): Support license detection for SBOM scan (aquasecurity#6072)
- ab74caa refactor(sbom): use intermediate representation for SPDX (aquasecurity#6310)
- 71da44f docs(terraform): improve documentation for filtering by inline comments (aquasecurity#6284)
- 102b6df fix(terraform): fix policy document retrieval (aquasecurity#6276)
- aa19aaf refactor(terraform): remove unused custom error (aquasecurity#6303)
- 8fcef35 refactor(sbom): add intermediate representation for BOM (aquasecurity#6240)
- fb8c516 fix(amazon): check only major version of AL to find advisories (aquasecurity#6295)
- 96bd7ac fix(db): use schema version as tag only for
trivy-dbandtrivy-java-dbregistries by default (aquasecurity#6219) - 12c5bf0 fix(nodejs): add name validation for package name from
package.json(aquasecurity#6268) - d6c40ce docs: Added install instructions for FreeBSD (aquasecurity#6293)
- 9d2057a feat(image): customer podman host or socket option (aquasecurity#6256)
- 2a9d9bd chore(deps): bump wazero from 1.2.1 to 1.6.0 (aquasecurity#6290)
- 617c3e3 feat(java): mark dependencies from
maven-invoker-pluginintegration tests pom.xml files asDev(aquasecurity#6213) - 56cedc0 fix(license): reorder logic of how python package licenses are acquired (aquasecurity#6220)
- d7d7265 test(terraform): skip cached modules (aquasecurity#6281)
- 6639911 feat(secret): Support for detecting Hugging Face Access Tokens (aquasecurity#6236)
- 337cb75 fix(cloudformation): support of all SSE algorithms for s3 (aquasecurity#6270)
- 9361cdb feat(terraform): Terraform Plan snapshot scanning support (aquasecurity#6176)
- ee01e6e chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.26.6 to 1.27.4 (aquasecurity#6249)
- 3d2f583 fix: typo function name and comment optimization (aquasecurity#6200)
- c4b5ab7 fix(java): don't ignore runtime scope for pom.xml files (aquasecurity#6223)
- 355c1b5 chore(deps): bump helm/kind-action from 1.8.0 to 1.9.0 (aquasecurity#6242)
- 7244ece chore(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 (aquasecurity#6243)
- 5cd0566 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.48.1 to 1.51.1 (aquasecurity#6251)
- ebb74a5 chore(deps): bump github.com/hashicorp/go-uuid from 1.0.1 to 1.0.3 (aquasecurity#6253)
- 24a8d6a chore(deps): bump github.com/open-policy-agent/opa from 0.61.0 to 0.62.0 (aquasecurity#6250)
- 9d0d7ad chore(deps): bump github.com/containerd/containerd from 1.7.12 to 1.7.13 (aquasecurity#6247)
- e8230e1 chore(deps): bump go.uber.org/zap from 1.26.0 to 1.27.0 (aquasecurity#6246)
- 04535b5 fix(license): add FilePath to results to allow for license path filtering via trivyignore file (aquasecurity#6215)
- 939e34e chore(deps): Upgrade iac deps (aquasecurity#6255)
- 7cb6c02 feat: add info log message about dev deps suppression (aquasecurity#6211)
- c1d26ec test(k8s): use test-db for k8s integration tests (aquasecurity#6222)
- 4f70468 ci: add maximize-build-space for
Testjob (aquasecurity#6221) - 1dfece8 fix(terraform): fix root module search (aquasecurity#6160)
- e1ea02c test(parser): squash test data for yarn (aquasecurity#6203)
- 64926d8 fix(terraform): do not re-e...
v0.41.3
v0.41.2
v0.40.2
v0.40.1
v0.40.0
Changelog
- 77bb6bb update CI/CD settings for release
- 7811ad0 docs: update info about config file (aquasecurity#6547)
- fae710d docs: remove RELEASE_VERSION from trivy.repo (aquasecurity#6546)
- d2d4022 fix(sbom): change error to warning for multiple OSes (aquasecurity#6541)
- 164b025 fix(vuln): skip empty versions (aquasecurity#6542)
- 5dd9bd4 feat(c): add license support for conan lock files (aquasecurity#6329)
- 7c2017f fix(terraform): Attribute and fileset fixes (aquasecurity#6544)
- 63c9469 refactor: change warning if no vulnerability details are found (aquasecurity#6230)
- aa822c2 refactor(misconf): improve error handling in the Rego scanner (aquasecurity#6527)
- 30cc88f ci: use tmp dir inside Trivy repo dir for GoReleaser (aquasecurity#6533)
- e32215c feat(go): parse main module of go binary files (aquasecurity#6530)
- d4da83c chore(deps): bump golang.org/x/net from 0.21.0 to 0.23.0 (aquasecurity#6526)
- 0d7d97d refactor(misconf): simplify the retrieval of module annotations (aquasecurity#6528)
- 9873cf3 chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (aquasecurity#6523)
- 95c8fd9 docs(nodejs): add info about supported versions of pnpm lock files (aquasecurity#6510)
- 12ec0df feat(misconf): loading embedded checks as a fallback (aquasecurity#6502)
- 9b7d713 fix(misconf): Parse JSON k8s manifests properly (aquasecurity#6490)
- 13e72ec refactor: remove parallel walk (aquasecurity#5180)
- a986199 fix: close pom.xml (aquasecurity#6507)
- 46d5aba fix(secret): convert severity for custom rules (aquasecurity#6500)
- 34ab09d fix(java): update logic to detect
pom.xmlfile snapshot artifacts from remote repositories (aquasecurity#6412) - 1ba5b59 fix: typo (aquasecurity#6283)
- 4fab0f8 docs(k8s,image): fix command-line syntax issues (aquasecurity#6403)
- d770981 chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (aquasecurity#6435)
- 4337068 fix(misconf): avoid panic if the scheme is not valid (aquasecurity#6496)
- d82d6cb feat(image): goversion as stdlib (aquasecurity#6277)
- cfddfb3 fix: add color for error inside of log message (aquasecurity#6493)
- dfcb0f9 chore(deps): bump actions/add-to-project from 0.4.1 to 1.0.0 (aquasecurity#6438)
- 183eaaf docs: fix links to OPA docs (aquasecurity#6480)
- 94d6e8c refactor: replace zap with slog (aquasecurity#6466)
- 336c47e docs: update links to IaC schemas (aquasecurity#6477)
- 06b4473 chore: bump Go to 1.22 (aquasecurity#6075)
- a51cedd refactor(terraform): sync funcs with Terraform (aquasecurity#6415)
- 53517d6 feat(misconf): add helm-api-version and helm-kube-version flag (aquasecurity#6332)
- ad544e9 chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.4.0 to 1.5.1 (aquasecurity#6426)
- 089368d chore(deps): bump github.com/go-openapi/strfmt from 0.22.0 to 0.23.0 (aquasecurity#6452)
- 1163565 chore(deps): bump github.com/hashicorp/golang-lru/v2 from 2.0.6 to 2.0.7 (aquasecurity#6430)
- 637da2b chore(deps): bump aquaproj/aqua-installer from 2.2.0 to 3.0.0 (aquasecurity#6437)
- 13190e9 fix(terraform): eval submodules (aquasecurity#6411)
- 6bca7c3 refactor(terraform): remove unused options (aquasecurity#6446)
- 8e4279b refactor(terraform): remove unused file (aquasecurity#6445)
- e98c873 chore(deps): bump github.com/testcontainers/testcontainers-go to v0.28.0 (aquasecurity#6387)
- b1c2eab chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.9.0 to 1.10.0 (aquasecurity#6427)
- 1c49a16 fix(misconf): Escape template value correctly (aquasecurity#6292)
- 8dd0fcd feat(misconf): add support for wildcard ignores (aquasecurity#6414)
- 74e4c6e fix(cloudformation): resolve
DedicatedMasterEnabledparsing issue (aquasecurity#6439) - 245c120 refactor(terraform): remove metrics collection (aquasecurity#6444)
- 86714bf feat(cloudformation): add support for logging and endpoint access for EKS (aquasecurity#6440)
- a758392 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.1 to 1.53.1 (aquasecurity#6424)
- 4d00d8b chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.4 to 1.27.10 (aquasecurity#6428)
- 3ad2b3e chore(deps): bump go.etcd.io/bbolt from 1.3.8 to 1.3.9 (aquasecurity#6429)
- 8baccd7 fix(db): check schema version for image name only (aquasecurity#6410)
- e75a90f chore(deps): bump github.com/google/wire from 0.5.0 to 0.6.0 (aquasecurity#6425)
- 6625bd3 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.149.1 to 1.155.1 (aquasecurity#6433)
- 826fe60 chore(deps): bump actions/cache from 4.0.0 to 4.0.2 (aquasecurity#6436)
- f23ed77 feat(misconf): Support private registries for misconf check bundle (aquasecurity#6327)
- df024e8 feat(cloudformation): inline ignore support for YAML templates (aquasecurity#6358)
- 29dee32 feat(terraform): ignore resources by nested attributes (aquasecurity#6302)
- 1a67472 perf(helm): load in-memory files (aquasecurity#6383)
- 09e37b7 feat(aws): apply filter options to result (aquasecurity#6367)
- 87a9aa6 feat(aws): quiet flag support (aquasecurity#6331)
- 712dcd3 fix(misconf): clear location URI for SARIF (aquasecurity#6405)
- 625f22b test(cloudformation): add CF tests (aquasecurity#6315)
- 6a2f6fd fix(cloudformation): infer type after resolving a function (aquasecurity#6406)
- 5f69937 fix(sbom): fix error when parent of SPDX Relationships is not a package. (aquasecurity#6399)
- 258d153 fix(nodejs): merge
Indirect,Dev,ExternalReferencesfields for same deps frompackage-lock.jsonfiles v2 or later (aquasecurity#6356) - ade033a docs: add info about support for package license detection in
fs/repomodes (aquasecurity#6381) - f85c9fa fix(nodejs): add support for parsing
workspacesfrompackage.jsonas an object (aquasecurity#6231) - 9d7f5c9 fix: use
0600perms for tmp files for post analyzers (aquasecurity#6386) - f148eb1 fix(helm): scan the subcharts once (aquasecurity#6382)
- 97f95c4 docs(terraform): add file patterns for Terraform Plan (aquasecurity#6393)
- abd62ae fix(terraform): сhecking SSE encryption algorithm validity (aquasecurity#6341)
- 7c409fd fix(java): parse modules from
pom.xmlfiles once (aquasecurity#6312) - 1b68327 chore(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible (aquasecurity#6364)
- a2482c1 fix(server): add Locations for
Packagesin client/server mode (aquasecurity#6366) - e866bd5 fix(sbom): add check for
CreationInfoto nil when detecting SPDX created using Trivy (aquasecurity#6346) - 1870f28 fix(report): don't include empty strings in
.vulnerabilities[].identifiers[].urlwhengitlab.tplis used (aquasecurity#6348) - 6c81e55 chore(ubuntu): Add Ubuntu 22.04 EOL date (aquasecurity#6371)
- 8ec3938 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 (aquasecurity#6321)
- f6c5d58 feat(java): add support licenses and graph for gradle lock files (aquasecurity#6140)
- c4022d6 feat(vex): consider root component for relationships (aquasecurity#6313)
- 3177924 fix: increase the default buffer size for scanning dpkg status files by 2 times (aquasecurity#6298)
- dd9620e chore: updates wazero to v1.7.0 (aquasecurity#6301)
- eb3ceb3 feat(sbom): Support license detection for SBOM scan (aquasecurity#6072)
- ab74caa refactor(sbom): use intermediate representation for SPDX (aquasecurity#6310)
- 71da44f docs(terraform): improve documentation for filtering by inline comments (aquasecurity#6284)
- 102b6df fix(terraform): fix policy document retrieval (aquasecurity#6276)
- aa19aaf refactor(terraform): remove unused custom error (aquasecurity#6303)
- 8fcef35 refactor(sbom): add intermediate representation for BOM (aquasecurity#6240)
- fb8c516 fix(amazon): check only major version of AL to find advisories (aquasecurity#6295)
- 96bd7ac fix(db): use schema version as tag only for
trivy-dbandtrivy-java-dbregistries by default (aquasecurity#6219) - 12c5bf0 fix(nodejs): add name validation for package name from
package.json(aquasecurity#6268) - d6c40ce docs: Added install instructions for FreeBSD (aquasecurity#6293)
- 9d2057a feat(image): customer podman host or socket option (aquasecurity#6256)
- 2a9d9bd chore(deps): bump wazero from 1.2.1 to 1.6.0 (aquasecurity#6290)
- 617c3e3 feat(java): mark dependencies from
maven-invoker-pluginintegration tests pom.xml files asDev(aquasecurity#6213) - 56cedc0 fix(license): reorder logic of how python package licenses are acquired (aquasecurity#6220)
- d7d7265 test(terraform): skip cached modules (aquasecurity#6281)
- 6639911 feat(secret): Support for detecting Hugging Face Access Tokens (aquasecurity#6236)
- 337cb75 fix(cloudformation): support of all SSE algorithms for s3 (aquasecurity#6270)
- 9361cdb feat(terraform): Terraform Plan snapshot scanning support (aquasecurity#6176)
- ee01e6e chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.26.6 to 1.27.4 (aquasecurity#6249)
- 3d2f583 fix: typo function name and comment optimization (aquasecurity#6200)
- c4b5ab7 fix(java): don't ignore runtime scope for pom.xml files (aquasecurity#6223)
- 355c1b5 chore(deps): bump helm/kind-action from 1.8.0 to 1.9.0 (aquasecurity#6242)
- 7244ece chore(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 (aquasecurity#6243)
- 5cd0566 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.48.1 to 1.51.1 (aquasecurity#6251)
- ebb74a5 chore(deps): bump github.com/hashicorp/go-uuid from 1.0.1 to 1.0.3 (aquasecurity#6253)
- 24a8d6a chore(deps): bump github.com/open-policy-agent/opa from 0.61.0 to 0.62.0 (aquasecurity#6250)
- 9d0d7ad chore(deps): bump github.com/containerd/containerd from 1.7.12 to 1.7.13 (aquasecurity#6247)
- e8230e1 chore(deps): bump go.uber.org/zap from 1.26.0 to 1.27.0 (aquasecurity#6246)
- 04535b5 fix(license): add FilePath to results to allow for license path filtering via trivyignore file (aquasecurity#6215)
- 939e34e chore(deps): Upgrade iac deps (aquasecurity#6255)
- 7cb6c02 feat: add info log message about dev deps suppression (aquasecurity#6211)
- c1d26ec test(k8s): use test-db for k8s integration tests (aquasecurity#6222)
- 4f70468 ci: add maximize-build-space for
Testjob (aquasecurity#6221) - 1dfece8 fix(terraform): fix root module search (aquasecurity#6160)
- e1ea02c test(parser): squash test data for yarn (aquasecurity#6203)
- 64926d8 fix(terraform): do not re-expand dynamic blocks (aquasecurity#6151)
- eb54bb5 docs: update ecosystem page reporting with db app (aquasecurity#6201)
- dc76c6e fix: k8s summary separate infra and user finding results (aquasecurity#6120)
- 1b7e474 fix: add context to target finding on k8s table view (aquasecurity#6099)
- 876ab84 fix: Printf format err (aquasecurity#6198)
- eef7c4f refactor: better integration of the parser into Trivy (aquasecurity#6183)
- 069aae5 chore(deps): bump helm.sh/helm/v3 from 3.14.1 to 3.14.2 (aquasecurity#6189)
- 4a9ac6d feat(terraform): Add hyphen and non-ASCII support for domain names in credential extraction (aquasecurity#6108)
- 9c5e5a0 fix(vex): CSAF filtering should consider relationships (aquasecurity#5923)
- 388f476 refactor(report): Replacing
source_locationingithubreport when scanning an image (aquasecurity#5999) - cd3e4bc feat(vuln): ignore vulnerabilities by PURL (aquasecurity#6178)
- ce81c05 feat(java): add support for fetching packages from rep...