Skip to content

Releases: grafeas/grafeas

v0.2.3

28 Aug 14:39
@wkozlik wkozlik
v0.2.3
9879eca
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.3 Latest
Latest
  • SBOM enhancements.
  • SLSA enhancements.
  • Vex Assessment enhancements.
Assets 2

v0.2.2

24 Apr 15:03
@wkozlik wkozlik
v0.2.2
f1fb34a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.2
  • Enhanced support for Vulnerability Notes and Occurrences, with the following changes:
    • Indicate the location at which an affected package was found in the container image.
    • CVSS proto compatible with v2 and v3.
    • More detailed status of language package scans in the Discovery occurrence.
    • Added cvss_version field to indicate which version was used to populate fields: cvss_score and severity.
    • Added support for Vex Assessments.
  • Added support for language packages in Package Notes and Occurrences.
  • Enhanced SLSA support.
    • Added support for SLSA v0.2 to the intoto statement.
    • Added SLSA v0.2 converter.
  • Added SBOM support.
  • Updated versions of frameworks and libraries
    • Use ANTLR v4.
    • Golang 1.20.
Assets 2

v0.1.3

18 Oct 20:26
@aysylu aysylu
v0.1.3
46886af
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.3

Release generated go protos along with the code in 0.1.2.

Assets 4