From 86144006b05f09c1f0aa986d9c4c219f5d97c965 Mon Sep 17 00:00:00 2001 From: Rex P <106129829+another-rex@users.noreply.github.com> Date: Thu, 30 May 2024 10:34:17 +1000 Subject: [PATCH] V1.7.4 changelog (#1001) Pre Release edits for v1.7.4 --- CHANGELOG.md | 11 +++ cmd/osv-scanner/__snapshots__/main_test.snap | 8 +-- internal/output/__snapshots__/sarif_test.snap | 68 +++++++++---------- internal/version/version.go | 2 +- 4 files changed, 50 insertions(+), 39 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index f968332b7b..679e2855fc 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,14 @@ +# v1.7.4: + +### Features: + +- [Feature #980](https://github.com/google/osv-scanner/pull/980) Support comparing alpine package versions locally. (Using --experimental-local-db can now scan alpine packages) +- [Feature #943](https://github.com/google/osv-scanner/pull/943) Support scanning gradle/verification-metadata.xml files. + +### Misc: + +- [Bug #968](https://github.com/google/osv-scanner/issues/968) Hide unimportant Debian vulnerabilities to reduce noise. + # v1.7.3: ### Features: diff --git a/cmd/osv-scanner/__snapshots__/main_test.snap b/cmd/osv-scanner/__snapshots__/main_test.snap index 7fb239f189..d734f1e5b8 100755 --- a/cmd/osv-scanner/__snapshots__/main_test.snap +++ b/cmd/osv-scanner/__snapshots__/main_test.snap @@ -9,7 +9,7 @@ No package sources found, --help for usage information. --- [TestRun/#01 - 1] -osv-scanner version: 1.7.3 +osv-scanner version: 1.7.4 commit: n/a built at: n/a @@ -102,7 +102,7 @@ Scanned /fixtures/locks-many/composer.lock file and found 1 package "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -172,7 +172,7 @@ Loaded filter from: /fixtures/go-project/osv-scanner.toml } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -517,7 +517,7 @@ Scanned /fixtures/locks-insecure/osv-scanner-flutter-deps.json file as } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ diff --git a/internal/output/__snapshots__/sarif_test.snap b/internal/output/__snapshots__/sarif_test.snap index 629d95fb3d..42ef35b5ba 100755 --- a/internal/output/__snapshots__/sarif_test.snap +++ b/internal/output/__snapshots__/sarif_test.snap @@ -62,7 +62,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -149,7 +149,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -170,7 +170,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -191,7 +191,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -212,7 +212,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -233,7 +233,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -254,7 +254,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -275,7 +275,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -296,7 +296,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -317,7 +317,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -338,7 +338,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -359,7 +359,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -380,7 +380,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -401,7 +401,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -422,7 +422,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -443,7 +443,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -501,7 +501,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -613,7 +613,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -679,7 +679,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -799,7 +799,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1010,7 +1010,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1148,7 +1148,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -1206,7 +1206,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1372,7 +1372,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1510,7 +1510,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -1531,7 +1531,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -1552,7 +1552,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -1573,7 +1573,7 @@ "informationUri": "https://github.com/google/osv-scanner", "name": "osv-scanner", "rules": [], - "version": "1.7.3" + "version": "1.7.4" } }, "results": [] @@ -1613,7 +1613,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1679,7 +1679,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1746,7 +1746,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1847,7 +1847,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1930,7 +1930,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ @@ -1996,7 +1996,7 @@ } } ], - "version": "1.7.3" + "version": "1.7.4" } }, "artifacts": [ diff --git a/internal/version/version.go b/internal/version/version.go index a280cb9fe6..e266effc32 100644 --- a/internal/version/version.go +++ b/internal/version/version.go @@ -1,4 +1,4 @@ package version // OSVVersion is the current release version, you should update this variable when doing a release -var OSVVersion = "1.7.3" +var OSVVersion = "1.7.4"