Skip to content

Commit

Permalink
Merge aabda74 into 2be4dde
Browse files Browse the repository at this point in the history
  • Loading branch information
@docker-scout-ci
docker-scout-ci[bot] authored Jul 31, 2024
2 parents 2be4dde + aabda74 commit a115e2e
Showing 12 changed files with 68 additions and 14 deletions.
6 changes: 0 additions & 6 deletions dist/docker-scout_1.11.0_checksums.txt
View file

This file was deleted.

6 changes: 6 additions & 0 deletions dist/docker-scout_1.12.0_checksums.txt
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
837f5727ae0206ecc989ecb34fb0b77775d147a9dbef9f862ac56d10efcd46de docker-scout_1.12.0_darwin_amd64.tar.gz
81ee17bc0aff180dfd6754b09d0bd885a8e6d7009b9a7c410b2b6056df52dc05 docker-scout_1.12.0_darwin_arm64.tar.gz
12ee997a8f969979c6eb3d6ecc9703d5233a75298e163f89b2a2f35a454f78e0 docker-scout_1.12.0_linux_amd64.tar.gz
96d09d1f30089908a4f2978dd3823c9199a560a9ee329bacb77758e48b4cffac docker-scout_1.12.0_linux_arm64.tar.gz
e6a1676f1a0e44a50bd34c3664aed46f771d5a09da46c5152bf2a979a0cfb6d4 docker-scout_1.12.0_windows_amd64.zip
f86ba04d86863cc22e2f368ad99ef07c948a62395867881cc1f5c82c51da5aaa docker-scout_1.12.0_windows_arm64.zip
Binary file renamed dist/docker-scout_1.11.0_darwin_amd64.tar.gz → dist/docker-scout_1.12.0_darwin_amd64.tar.gz
View file
Binary file not shown.
Binary file renamed dist/docker-scout_1.11.0_darwin_arm64.tar.gz → dist/docker-scout_1.12.0_darwin_arm64.tar.gz
View file
Binary file not shown.
Binary file renamed dist/docker-scout_1.11.0_linux_amd64.tar.gz → dist/docker-scout_1.12.0_linux_amd64.tar.gz
View file
Binary file not shown.
Binary file renamed dist/docker-scout_1.11.0_linux_arm64.tar.gz → dist/docker-scout_1.12.0_linux_arm64.tar.gz
View file
Binary file not shown.
Binary file renamed dist/docker-scout_1.11.0_windows_amd64.zip → dist/docker-scout_1.12.0_windows_amd64.zip
View file
Binary file not shown.
Binary file renamed dist/docker-scout_1.11.0_windows_arm64.zip → dist/docker-scout_1.12.0_windows_arm64.zip
View file
Binary file not shown.
10 changes: 10 additions & 0 deletions docs/docker_scout_cves.yaml
View file
Original file line number Diff line number Diff line change
@@ -144,6 +144,16 @@ options:
experimentalcli: false
kubernetes: false
swarm: false
- option: only-base
value_type: bool
default_value: "false"
description: Only show CVEs introduced by the base image
deprecated: false
hidden: false
experimental: false
experimentalcli: false
kubernetes: false
swarm: false
- option: only-cisa-kev
value_type: bool
default_value: "false"
40 changes: 40 additions & 0 deletions docs/docker_scout_quickview.yaml
View file
Original file line number Diff line number Diff line change
@@ -56,6 +56,16 @@ options:
experimentalcli: false
kubernetes: false
swarm: false
- option: only-vex-affected
value_type: bool
default_value: "false"
description: Filter CVEs by VEX statements with status not affected
deprecated: false
hidden: false
experimental: false
experimentalcli: false
kubernetes: false
swarm: false
- option: org
value_type: string
description: Namespace of the Docker organization
@@ -104,6 +114,36 @@ options:
experimentalcli: false
kubernetes: false
swarm: false
- option: vex
value_type: bool
default_value: "false"
description: Apply VEX statements to filter CVEs
deprecated: true
hidden: true
experimental: false
experimentalcli: false
kubernetes: false
swarm: false
- option: vex-author
value_type: stringSlice
default_value: '[]'
description: List of VEX statement authors to accept
deprecated: false
hidden: false
experimental: false
experimentalcli: false
kubernetes: false
swarm: false
- option: vex-location
value_type: stringSlice
default_value: '[]'
description: File location of directory or file containing VEX statements
deprecated: false
hidden: false
experimental: false
experimentalcli: false
kubernetes: false
swarm: false
inherited_options:
- option: debug
value_type: bool
1 change: 1 addition & 0 deletions docs/scout_cves.md
View file
Original file line number Diff line number Diff line change
@@ -21,6 +21,7 @@ Display CVEs identified in a software artifact
| `--ignore-base` | | | Filter out CVEs introduced from base image |
| `--locations` | | | Print package locations including file paths and layer diff_id |
| `--multi-stage` | | | Show packages from multi-stage Docker builds |
| `--only-base` | | | Only show CVEs introduced by the base image |
| `--only-cisa-kev` | | | Filter to CVEs listed in the CISA KEV catalog |
| `--only-cve-id` | `stringSlice` | | Comma separated list of CVE ids (like CVE-2021-45105) to search for |
| `--only-fixed` | | | Filter to fixable CVEs |
19 changes: 11 additions & 8 deletions docs/scout_quickview.md
View file
Original file line number Diff line number Diff line change
@@ -9,14 +9,17 @@ Quick overview of an image

### Options

| Name | Type | Default | Description |
|:-----------------|:---------|:--------|:--------------------------------------------------------------------------------------------------------|
| `--env` | `string` | | Name of the environment |
| `--latest` | | | Latest indexed image |
| `--org` | `string` | | Namespace of the Docker organization |
| `-o`, `--output` | `string` | | Write the report to a file |
| `--platform` | `string` | | Platform of image to analyze |
| `--ref` | `string` | | Reference to use if the provided tarball contains multiple references.<br>Can only be used with archive |
| Name | Type | Default | Description |
|:----------------------|:--------------|:--------|:--------------------------------------------------------------------------------------------------------|
| `--env` | `string` | | Name of the environment |
| `--latest` | | | Latest indexed image |
| `--only-vex-affected` | | | Filter CVEs by VEX statements with status not affected |
| `--org` | `string` | | Namespace of the Docker organization |
| `-o`, `--output` | `string` | | Write the report to a file |
| `--platform` | `string` | | Platform of image to analyze |
| `--ref` | `string` | | Reference to use if the provided tarball contains multiple references.<br>Can only be used with archive |
| `--vex-author` | `stringSlice` | | List of VEX statement authors to accept |
| `--vex-location` | `stringSlice` | | File location of directory or file containing VEX statements |


<!---MARKER_GEN_END-->

0 comments on commit a115e2e

Please sign in to comment.