Resolve "Unnecessary download of Trivy databases"

Closes #102

See merge request !134

Resolve "Typo in README.md"

Closes #101

See merge request !133

Signed-off-by: Clement Bois <clement.bois@orange.com>

- $DOCKER_TRIVY_ADDR removed in favor of $TRIVY_SERVER
- $DOCKER_TRIVY_SECURITY_LEVEL_THRESHOLD removed in favor of $TRIVY_SEVERITY
- $DOCKER_TRIVY_DB_REPOSITORY removed in favor of $TRIVY_DB_REPOSITORY
- $DOCKER_TRIVY_JAVA_DB_REPOSITORY removed in favor of $TRIVY_JAVA_DB_REPOSITORY

BREAKING CHANGE: 4 Trivy configuration params removed in favor of the native Trivy environment variables

# [6.0.0](5.14.1...6.0.0) (2024-11-26)

### Code Refactoring

* **trivy:** enforce usage of Trivy environment variables ([e69ce135](e69ce135))

### BREAKING CHANGES

* **trivy:** 4 Trivy configuration params removed in favor of the native Trivy environment variables

Signed-off-by: Clement Bois <clement.bois@orange.com>

Signed-off-by: Clement Bois <clement.bois@orange.com>

match documentation to values in templates, i.e., s/vuln-type/pkg-types/g.

docs: correct value to DOCKER_TRIVY_ARGS

Closes #106

See merge request !136

# [6.1.0](6.0.0...6.1.0) (2025-01-27)

### Features

* disable tracking service by default ([4fa3b0ea](4fa3b0ea))

chore(deps): update to-be-continuous dependencies

See merge request !137

Merge branch '76-sbom-enabled-by-default-results-in-unnecessary-consumption-of-energy' into 'master'

Resolve "SBOM enabled by default results in unnecessary consumption of energy"

Closes #76

See merge request to-be-continuous/docker!112

## [6.1.1](6.1.0...6.1.1) (2025-01-31)

### Bug Fixes

* **sbom:** only generate SBOMs on prod branches, integ branches and release tags ([5102c5f4](5102c5f4))

fix: homogenize new TBC envsubst mechanism

See merge request !138

## [6.1.2](6.1.1...6.1.2) (2025-02-01)

### Bug Fixes

* homogenize new TBC envsubst mechanism ([8c6e14aa](8c6e14aa))

chore(deps): update dependency to-be-continuous/semantic-release to v3.13

See merge request !139

docs: update GCP variant to reflect the latest version

Closes #108

See merge request !140

docs: add Trivy scan badges

See merge request !141

Resolve "sbom 413"

Closes #111

See merge request !142

## [6.1.3](6.1.2...6.1.3) (2025-03-11)

### Bug Fixes

* **sbom:** disable file catalogers for Syft SBOM (to minimize SBOM file) ([c95c2d47](c95c2d47))

chore(deps): update dependency to-be-continuous/semantic-release to v3.14

See merge request !145

## [6.1.4](6.1.3...6.1.4) (2025-04-11)

### Bug Fixes

* **envsubst:** leave lines with '# nosubst' unchanged when substituting (used to be simply dropped) ([214ae5df](214ae5df))

fix: switch to official image with awk for buildah and skopeo

Closes #115 and #116

See merge request !146

## [6.1.5](6.1.4...6.1.5) (2025-04-18)

### Bug Fixes

* switch to official image with awk for buildah and skopeo ([b8a065ad](b8a065ad))

fix: allow installation of missing package awk

Closes #115

See merge request !147

## [6.1.6](6.1.5...6.1.6) (2025-04-18)

### Bug Fixes

* allow installation of missing package awk ([bb602d8e](bb602d8e))

fix: install custom CA certs before awk

Closes #119

See merge request !148

## [6.1.7](6.1.6...6.1.7) (2025-04-25)

### Bug Fixes

* install custom CA certs before awk ([45b8cb39](45b8cb39))

docs: externally built image

Closes #122

See merge request !149

fix: ignore readonly ca-certificates

Closes #124

See merge request !151

## [6.1.8](6.1.7...6.1.8) (2025-06-10)

### Bug Fixes

* ignore readonly ca-certificates ([863cb6c9](863cb6c9))

fix: register custom ca for syft

Closes #125

See merge request !152

## [6.1.9](6.1.8...6.1.9) (2025-06-12)

### Bug Fixes

* register custom ca for syft ([bc7f70fb](bc7f70fb))

refactor(image): change FQIN to docker.io

Closes #123

See merge request !150

## [6.1.10](6.1.9...6.1.10) (2025-06-13)

### Bug Fixes

* replace deprecated Docker Hub registry FQDN ([42058786](42058786))

RELEASE_REF contains an ambiguous litteral '-'
Depending on the context, that can cause matching issues

## [6.1.11](6.1.10...6.1.11) (2025-06-20)

### Bug Fixes

* **release:** fix RELEASE_REF regex ([ba6da72e](ba6da72e))

Add support for signing images

Closes #113

See merge request !144

# [6.2.0](6.1.11...6.2.0) (2025-06-20)

### Features

* **cosign:** add support for signing images with Cosign ([614838c1](614838c1))

## [6.2.1](6.2.0...6.2.1) (2025-06-20)

### Bug Fixes

* **buildah:** use buildah specific image ([0944c880](0944c880))
* **skopeo:** use skopeo specific image ([da53ce5c](da53ce5c))

Resolve "[Trivy] Disable telemetry and version check"

Closes #130

See merge request !154

Don't use pattern matching to test pure strings (messes up with files on Alpine)

## [6.2.2](6.2.1...6.2.2) (2025-07-05)

### Bug Fixes

* fix unscope_variables ([e4deed69](e4deed69))

chore(deps): update dependency to-be-continuous/bash to v3.7

See merge request !155

doc: introduce .trivyignore file

See merge request !157

feat: configurable @url@ timeout

Closes #126

See merge request !156

# [6.3.0](6.2.2...6.3.0) (2025-07-24)

### Features

* configurable [@url](https://gitlab.com/url)@ timeout ([950e3df8](950e3df8))

fix: cache key for trivy

Closes #132

See merge request !159

## [6.3.1](6.3.0...6.3.1) (2025-08-08)

### Bug Fixes

* cache key for trivy ([4a35f1f6](4a35f1f6))

# [6.4.0](6.3.1...6.4.0) (2025-08-12)

### Features

* modular workflow rules ([d9d206b1](d9d206b1))