Skip to content

Releases: docker/scout-action

v1.18.1

26 May 13:22
@github-actions github-actions
v1.18.1
aceeb83
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.18.1 Latest
Marketplace
Latest
Marketplace 
Merge 39f1019cb9fdb2ee182b53aa6d5622662da33215 into c94507b5bf72bd252…
Assets 2
Loading

v1.18.0

13 May 08:38
@github-actions github-actions
v1.18.0
c94507b
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.18.0
Marketplace
Marketplace 
Merge 8902ccab5ce8dc6a176b3c9ec16cdf91109011d4 into 381b657c498a4d287…
Loading

v1.17.1

16 Apr 07:46
@github-actions github-actions
v1.17.1
381b657
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.17.1
Marketplace
Marketplace 
Merge e07bccd7af32a785595305309423904814ac3536 into d341d36d6eebbe05c…
Loading

v1.17.0

18 Mar 16:34
@github-actions github-actions
v1.17.0
d341d36
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.17.0
Marketplace
Marketplace 
Merge b8e0e28db53a29161c11fabcd6d8ad434b53878e into 0133ff88fe16d4a41…
Loading

v1.16.3

18 Mar 16:34
@github-actions github-actions
v1.16.3
0133ff8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.16.3
Marketplace
Marketplace 
Merge 2448c740cbd6ac04901cc46ead978f2f4b6d5305 into a55ca454857962fda…
Loading

v1.16.2

18 Mar 16:34
@github-actions github-actions
v1.16.2
a55ca45
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.16.2
Marketplace
Marketplace 
Merge c9725977d80d42f014b943671ca30c322423bb81 into b23590dc1e4d09feb…
Loading

v1.16.1

13 Dec 16:17
@github-actions github-actions
v1.16.1
b23590d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.16.1
Marketplace
Marketplace

What's Changed

  • Fix in-toto subject digest for the docker scout attestation add command by @cdupuis

Contributors

cdupuis
Loading

v1.16.0

13 Dec 06:30
@github-actions github-actions
v1.16.0
This tag was signed with the committer’s verified signature.
cdupuis Christian Dupuis
GPG key ID: A1D490FDF23D8B06
Verified
Learn about vigilant mode.
2bfc559
Compare
Choose a tag to compare
v1.16.0
Marketplace
Marketplace

What's Changed

  • Add secret scanning to sbom command by @cdupuis
  • Keep original pattern to find nested matches too by @cdupuis
  • Make licenses unqiue by @cdupuis
  • Print platform in markdown output by @cdupuis
  • Normalize licenses using spdx license list by @cdupuis
  • Updates to make spdx output spec compliant by @cdupuis
  • Check dir exists before creating temp file by @chrispatrick
  • Update Go, crypto module and alpine by @cdupuis
  • Add support for attestations for images from Tanzu Application Catalog by @cdupuis
  • Fix behaviour with multi images in attest cmd by @cdupuis

Contributors

cdupuis and chrispatrick
Loading

v1.15.1

10 Nov 18:13
@cdupuis cdupuis
v1.15.1
6ac950e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.15.1
Marketplace
Marketplace

What's Changed

New Contributors

Contributors

cdupuis and neilprosser
Loading

v1.15.0

31 Oct 10:16
@github-actions github-actions
v1.15.0
e1c0d58
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.15.0
Marketplace
Marketplace

Highlights

  • Add CycloneDX as output format for the sbom cmd 
    - name: Docker Scout
  id: docker-scout-environment
  uses: docker/scout-action@v1
  with:
    command: sbom
    image: REF
    format: cyclonedx

Bug Fixes / Improvements

  • Improve reading and caching of attestations with containerd image store.

Contributors

@cdupuis @LaurentGoderre @eunomie @felipecruz91 @dvdksn

Loading