Skip to content

v1.6.1

Marketplace
Marketplace
Compare
Choose a tag to compare
@github-actions github-actions released this 22 Mar 08:38
· 14 commits to main since this release
v1.6.1
777ea8e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Highlights

  • Add support for passing in SBOM files in SDPX or in-toto SDPX format 
    uses: docker/scout-action@v1
with:
    command: cves
    image: sbom://alpine.spdx.json
  • Add support for SBOM files in syft-json format 
    uses: docker/scout-action@v1
with:
    command: cves
    image: sbom://alpine.syft.json

Bug Fixes / Improvements

  • Fix panic when indexing single image oci-dir input
  • Improve local attestation support with the containerd image store

Contributors

@cdupuis @eunomie @chrispatrick @felipecruz91 @dvdksn @pnorton5432

Assets 2