Releases: rfJanit/trivy-rf
Releases · rfJanit/trivy-rf
Release list
v0.0.1-rf.1
Changelog
- 6b04d3b chore(ci): remove aquasec-only workflows (canary, release-please)
- 00003c3 Remove Auto Ready For Review file
- 65a935a Test Fix
- e0ae6da Packaging for Trivy Prod
- 1a285f5 Merge branch 'main' into feat/add-rapidfort-scanner
- c0654e1 fix(spdx): guard against nil root component in SPDX marshaler (aquasecurity#10771)
- 7ca5a6b ci(helm): bump Trivy version to 0.71.0 for Trivy Helm Chart 0.23.0 (aquasecurity#10768)
- 9b49920 release: v0.71.0 [main] (aquasecurity#10638)
- 35cefae ci: use only the first line of commit message in release-please workflow (aquasecurity#10766)
- f8a6ddb feat: add WithDriver and WithProvider options to ospkg detector (aquasecurity#10740)
- 3ea80c0 chore(deps): bump github.com/google/go-containerregistry to v0.21.6 (aquasecurity#10741)
- 203dd94 refactor(secret): normalize configPath once in Init (aquasecurity#10702)
- 9ad901d feat(secret): add Maven rules to detect passwords and passphrases in settings.xml and settings-security.xml files (aquasecurity#10704)
- 8f049df chore(deps): bump the common group across 1 directory with 25 updates (aquasecurity#10758)
- 900ffcb chore: migrate from gomodguard to gomodguard_v2 (aquasecurity#10739)
- 3d5bc38 chore(deps): bump the docker group across 1 directory with 2 updates (aquasecurity#10709)
- 1c515db chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.302.0 to 1.303.0 in the aws group (aquasecurity#10752)
- 984581f ci: scope GitHub App tokens to minimum required permissions (aquasecurity#10755)
- b1626a3 chore(deps): upgrade go-redis from v8 to v9 (aquasecurity#10736)
- 9c1cf65 fix(misconf): fix rendering of nested values in terraform plan lists (aquasecurity#10746)
- f099dc4 fix(misconf): skip resources with no after changes (aquasecurity#10352)
- 0bc5c6d fix(misconf): reject nil plays during playbook parsing (aquasecurity#10273)
- 0e4dc66 fix(nodejs): silently skip subdirectory package.json files with invalid names (aquasecurity#10609)
- f080e1e fix(misconf): skip null cty values in AsMapValue to prevent panic (aquasecurity#10723)
- 441251e refactor(misconf): replace custom Helm archive parsing with Helm SDK loaders (aquasecurity#10718)
- 7d9d519 chore(deps): bump github.com/containerd/containerd/v2 to v2.3.1 (aquasecurity#10738)
- cdfaf0b chore(deps): bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 (aquasecurity#10686)
- 69e78e2 fix(report): don't produce trailing comma in gitlab.tpl links array (aquasecurity#10728)
- ac2f3d7 fix(cloudformation): propagate AWS::EC2::Instance MetadataOptions (aquasecurity#10731)
- ac79fb9 chore(deps): upgrade github.com/cenkalti/backoff dependency to v5 (aquasecurity#10705)
- 8047ef3 chore: bump golangci-lint to v2.12 (aquasecurity#10726)
- f2a1237 feat(spdx): add SHA-512 hash algorithm support to SPDX serializer (aquasecurity#10719)
- 04f739e feat(sbom): support for CycloneDX 1.7 (aquasecurity#10715)
- f9ed425 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.300.0 to 1.302.0 in the aws group (aquasecurity#10708)
- e169597 chore: migrate from helm.sh/helm/v3 to helm.sh/helm/v4 (aquasecurity#10678)
- 519eac9 fix(image): correctly reconstruct RUN instructions built without BuildKit (aquasecurity#10714)
- 0903124 feat(ospkg): update rapidfort scanner implementation and tests
- c080ce3 feat(java): support from settings.xml (aquasecurity#10692)
- f8fdb93 fix(java): surface 429 from a remote Maven repository as a fatal error when scanning pom.xml files (aquasecurity#10693)
- f10fad5 chore: bump go to 1.26.3 (aquasecurity#10683)
- 451fd99 fix(nodejs): handle legacy license formats in npm lockfile parser (aquasecurity#10684)
- fc1e46f fix(secret): correctly skip secret-scanner config file from scanning (aquasecurity#10666)
- a61feac feat(ubuntu): detect Ubuntu 26.04 LTS (aquasecurity#10592)
- 2f940f0 refactor(nodejs): deduplicate license traversal across package managers (aquasecurity#10681)
- 39a28ed fix: overwrite OS packages PURLs after overwrite OS (aquasecurity#10298)
- 69dcd18 feat(secret): add Azure secret detection rules (aquasecurity#10562)
- 9d91b88 fix(misconf): prevent path traversal in Terraform filesystem functions (aquasecurity#10664)
- e4325b1 feat(secret): add a way to customize skipped folders, files and exts (aquasecurity#10550)
- ea7e9ad ci: migrate PAT tokens to GitHub App (aquasecurity#10628)
- cb229e9 chore(deps): bump the aws group across 1 directory with 6 updates (aquasecurity#10598)
- 00cebeb chore(deps): bump the docker group across 1 directory with 3 updates (aquasecurity#10596)
- 8dff4b7 chore(deps): bump the github-actions group across 2 directories with 9 updates (aquasecurity#10608)
- 56b5471 chore(deps): bump github.com/in-toto/in-toto-golang from 0.10.0 to 0.11.0 (aquasecurity#10641)
- 10d64d2 chore(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0 (aquasecurity#10648)
- 99c0659 ci: migrate PAT tokens to GITHUB_TOKEN for reusable-release workflow (aquasecurity#10655)
- b08bf6a feat(seal): add vendor support for language file detection. (aquasecurity#10297)
- a75a468 fix(misconf): make identifiers in ignore rules case-insensitive (aquasecurity#10375)
- 3a2f7fb fix: pull instead of clone when test repo already exists (aquasecurity#10636)
- 920fad2 docs: document how to disable check.trivy.dev connections (aquasecurity#10623)
- d4ac98a docs(misconf): fix typo in misconfiguration config (aquasecurity#10619)
- 85aa9b7 ci: remove secrets from run block (aquasecurity#10590)
- 72c2a23 docs: fix typos (aquasecurity#10605)
- 99eabdf refactor(deps): replace archived go-homedir with os.UserHomeDir (aquasecurity#10484)
- 28ed214 chore(deps): Bump
go-iniand fix the import path. (aquasecurity#10489) - bb5a8cf chore(deps): bump the github-actions group across 2 directories with 9 updates (aquasecurity#10495)
- a0f71c8 chore(deps): bump github.com/aquasecurity/testdocker (aquasecurity#10543)
- 2095d49 docs: convert README demonstration videos to mp4 (aquasecurity#10419)
- 4aa938d chore(deps): upgrade vm scan dependency for bug fix (aquasecurity#10575)
- c72b416 docs(nodejs): clarify package.json behavior in image scanning (aquasecurity#10572)
- 8e23717 chore(deps): replace xeipuuv/gojsonschema and invopop/jsonschema with google/jsonschema-go (aquasecurity#10528)
- cb4aa9c chore(deps): bump github.com/go-git/go-git/v5 from 5.17.2 to 5.18.0 (aquasecurity#10554)
- 73809db chore(deps): bump alpine to 3.23.4 (aquasecurity#10552)
- 2459b1d ci(helm): bump Trivy version to 0.70.0 for Trivy Helm Chart 0.22.0 (aquasecurity#10547)
- 8a3177a release: v0.70.0 [main] (aquasecurity#10105)
- 974de49 chore(deps): bump go.opentelemetry.io/otel/sdk from 1.42.0 to 1.43.0 (aquasecurity#10496)
- 2175597 chore(deps): bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2.0.6 (aquasecurity#10526)
- 50c7a1e chore(deps): bump the common group across 1 directory with 8 updates (aquasecurity#10540)
- 885fbce chore(deps): bump the docker group across 1 directory with 2 updates (aquasecurity#10538)
- 7ee3e1e fix: use Development category for GoReleaser discussions (aquasecurity#10530)
- 6dbe369 chore(deps): bump testcontainers-go to v0.42.0 (aquasecurity#10531)
- 21e6888 chore: update CODEOWNERS (aquasecurity#10529)
- 35d28e8 chore(deps): bump helm.sh/helm/v3 from 3.20.1 to 3.20.2 (aquasecurity#10511)
- 6d40a98 chore(deps): bump github.com/hashicorp/go-getter from 1.8.5 to 1.8.6 (aquasecurity#10510)
- 848f41b chore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 (aquasecurity#10449)
- aa8d502 ci: migrate from mkdocs-material-insiders to mkdocs-material (aquasecurity#10509)
- d2245de chore: remove aquasecurity/homebrew-trivy tap from GoReleaser (aquasecurity#10508)
- 57c9cd3 ci: update runners for workflows that interact with GitHub API (aquasecurity#10502)
- 42f73ae ci: rename tokens and update runners (aquasecurity#10500)
- 87b62ee ci: trigger helm chart publishing via helm-charts workflow (aquasecurity#10474)
- 6be4a27 ci: remove ruleset update step from release-please workflow (aquasecurity#10...