chore(deps): update aquasec/trivy docker tag to v0.52.2 signed-off-by: bot, renovate <hopprexternalrenovate.dl-eo@groups.lmco.com>
This MR contains the following updates:
Package | Type | Update | Change |
---|---|---|---|
aquasec/trivy (source) | image-name | minor |
0.51.2 -> 0.52.2
|
Release Notes
aquasecurity/trivy (aquasec/trivy)
v0.52.2
Changelog
-
8709d4f
release: v0.52.2 [release/v0.52] (#6896) -
a4b8ad7
ci: useubuntu-latest-m
runner [backport: release/v0.52] (#6933) -
2b711bc
chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 [backport: release/v0.52] (#6919) -
191d31e
test: bump docker API to 1.45 [backport: release/v0.52] (#6922) -
3f5874c
ci: bumpgithub.com/goreleaser/goreleaser
tov2.0.0
[backport: release/v0.52] (#6893) -
8f8c76a
fix(debian): take installed files from the origin layer [backport: release/v0.52] (#6892)
v0.52.1
Changelog
-
a3caf06
release: v0.52.1 [release/v0.52] (#6877) -
01dbb42
fix(nodejs): fix infinite loop when package link frompackage-lock.json
file is broken [backport: release/v0.52] (#6888) -
f186d22
fix(sbom): don't overwritesrcEpoch
when decoding SBOM files [backport: release/v0.52] (#6881) -
093c0ae
fix(python): compare pkg names frompoetry.lock
andpyproject.toml
in lowercase [backport: release/v0.52] (#6878) -
6bfda76
Merge pull request #6879 from aquasecurity/backport-pr-6864-to-release/v0.52 -
53850c8
docs: explain how VEX is applied (#6864) -
2211962
Merge pull request #6875 from aquasecurity/backport-pr-6857-to-release/v0.52 -
a614b69
fix(nodejs): fix infinity loops forpnpm
with cyclic imports (#6857)
v0.52.0
Features
- Add Julia language analyzer support (#5635) (fecafb1)
- add support for plugin index (#6674) (26faf8f)
- misconf: Add support for deprecating a check (#6664) (88702cf)
- misconf: add Terraform 'removed' block to schema (#6640) (b7a0a13)
- misconf: register builtin Rego funcs from trivy-checks (#6616) (7c22ee3)
- misconf: resolve tf module from OpenTofu compatible registry (#6743) (ac74520)
- misconf: support for VPC resources for inbound/outbound rules (#6779) (349caf9)
- misconf: support symlinks inside of Helm archives (#6621) (4eae37c)
- nodejs: add v9 pnpm lock file support (#6617) (1e08648)
- plugin: specify plugin version (#6683) (d6dc567)
-
python: add license support for
requirement.txt
files (#6782) (29615be) -
python: add line number support for
requirement.txt
files (#6729) (2bc54ad) - report: Include licenses and secrets filtered by rego to ModifiedFindings (#6483) (fa3cf99)
- vex: improve relationship support in CSAF VEX (#6735) (a447f6b)
- vex: support non-root components for products in OpenVEX (#6728) (9515695)
Bug Fixes
- clean up golangci lint configuration (#6797) (62de6f3)
- cli: always output fatal errors to stderr (#6827) (c2b9132)
- close APKINDEX archive file (#6672) (5caf437)
- close settings.xml (#6768) (9c3e895)
- close testfile (#6830) (aa0c413)
-
conda: add support
pip
deps forenvironment.yml
files (#6675) (150a773) -
go: add only non-empty root modules for
gobinaries
(#6710) (c96f2a5) -
go: include only
.version
|.ver
(no prefixes) ldflags forgobinaries
(#6705) (afb4f9d) - Golang version parsing from binaries w/GOEXPERIMENT (#6696) (696f2ae)
- include packages unless it is not needed (#6765) (56dbe1f)
- misconf: don't shift ignore rule related to code (#6708) (39a746c)
- misconf: skip Rego errors with a nil location (#6638) (a2c522d)
- misconf: skip Rego errors with a nil location (#6666) (a126e10)
- node-collector high and critical cves (#6707) (ff32deb)
- plugin: initialize logger (#6836) (728e77a)
-
python: add package name and version validation for
requirements.txt
files. (#6804) (ea3a124) - report: hide empty tables if all vulns has been filtered (#6352) (3d388d8)
-
sbom: fix panic for
convert
mode when scanning json file derived from sbom file (#6808) (f92ea09) - use of specified context to obtain cluster name (#6645) (39ebed4)
Performance Improvements
v0.51.4
Changelog
-
c06f467
chore: downgrade trivy-checks and trivy-aws -
df4f760
build: use main package instead of main.go (#6766) -
bf7a8ed
chore(deps): bump the common group across 1 directory with 29 updates (#6756) -
acb22c6
chore(deps): bump the aws group with 8 updates (#6738) -
9a3510f
chore(deps): bump the docker group with 2 updates (#6739) -
7806b37
ci: addgeneric
dir to deb deploy script (#6636)
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.
Edited by lmco-renovate-bot