Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): update dependency trivy to v0.57.1 #174

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Mar 19, 2024

This PR contains the following updates:

Package Update Change
trivy minor 0.48.2 -> 0.57.1

Release Notes

aquasecurity/trivy (trivy)

v0.57.1

Compare Source

v0.57.0

Compare Source

⚠ BREAKING CHANGES
  • k8s: support k8s multi container (#​7444)
Features
Bug Fixes

v0.56.2

Compare Source

Changelog

  • f2252c8 release: v0.56.2 [release/v0.56] (#​7694)
  • f6700ec fix(redhat): include arch in PURL qualifiers [backport: release/v0.56] (#​7702)
  • 25d2540 fix(sbom): add options for DBs in private registries [backport: release/v0.56] (#​7691)

v0.56.1

Compare Source

Changelog

v0.56.0

Compare Source

Features
Bug Fixes
Performance Improvements
Reverts
  • java: stop supporting of test scope for pom.xml files (#​7488) (b0222fe)

v0.55.2

Compare Source

Changelog

  • 928c7c0 release: v0.55.2 [release/v0.55] (#​7523)
  • 14a058f fix(java): use dependencyManagement from root/child pom's for dependencies from parents [backport: release/v0.55] (#​7521)
  • 990bc4e chore(deps): bump alpine from 3.20.0 to 3.20.3 [backport: release/v0.55] (#​7516)

v0.55.1

Compare Source

⚡Release highlights and summary⚡

👉https://github.com/aquasecurity/trivy/discussions/7494

Changelog

https://github.com/aquasecurity/trivy/blob/release/v0.55/CHANGELOG.md#0551-2024-09-12

v0.55.0

Compare Source

⚠ BREAKING CHANGES
  • cli: delete deprecated SBOM flags (#​7266)
Features
Bug Fixes
Performance Improvements

v0.54.1

Compare Source

Changelog

  • 854c61d release: v0.54.1 [release/v0.54] (#​7282)
  • 334a1c2 fix(flag): incorrect behavior for deprected flag --clear-cache [backport: release/v0.54] (#​7285)
  • f61725c fix(java): Return error when trying to find a remote pom to avoid segfault [backport: release/v0.54] (#​7283)
  • a7b7117 fix(plugin): do not call GitHub content API for releases and tags [backport: release/v0.54] (#​7279)

v0.54.0

Compare Source

Features
Bug Fixes
  • Add dependencyManagement exclusions to the child exclusions (#​6969) (dc68a66)
  • add missing platform and type to spec (#​7149) (c8a7abd)
  • cli: error on missing config file (#​7154) (7fa5e7d)
  • close file when failed to open gzip (#​7164) (2a577a7)
  • dotnet: don't include non-runtime libraries into report for *.deps.json files (#​7039) (5bc662b)
  • dotnet: show nuget package dir not found log only when checking nuget packages (#​7194) (d76feba)
  • ignore nodes when listing permission is not allowed (#​7107) (25f8143)
  • java: avoid panic if deps from pom in it dir are not found (#​7245) (4e54a7e)
  • java: use go-mvn-version to remove Package duplicates (#​7088) (a7a304d)
  • misconf: do not evaluate TF when a load error occurs (#​7109) (f27c236)
  • nodejs: detect direct dependencies when using latest version for files yarn.lock + package.json (#​7110) (54bb8bd)
  • report: hide empty table when all secrets/license/misconfigs are ignored (#​7171) (c3036de)
  • secret: skip regular strings contain secret patterns (#​7182) (174b1e3)
  • secret: trim excessively long lines (#​7192) (92b13be)
  • secret: update length of hugging-face-access-token (#​7216) (8c87194)
  • server: pass license categories to options (#​7203) (9d52018)
Performance Improvements
  • debian: use bytes.Index in emptyLineSplit to cut allocation (#​7065) (acbec05)

v0.53.0

Compare Source

⚠ BREAKING CHANGES
  • k8s: node-collector dynamic commands support (#​6861)
  • add clean subcommand (#​6993)
  • aws: Remove aws subcommand (#​6995)
Features
Bug Fixes

v0.52.2

Compare Source

Changelog

  • 8709d4f release: v0.52.2 [release/v0.52] (#​6896)
  • a4b8ad7 ci: use ubuntu-latest-m runner [backport: release/v0.52] (#​6933)
  • 2b711bc chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 [backport: release/v0.52] (#​6919)
  • 191d31e test: bump docker API to 1.45 [backport: release/v0.52] (#​6922)
  • 3f5874c ci: bump github.com/goreleaser/goreleaser to v2.0.0 [backport: release/v0.52] (#​6893)
  • 8f8c76a fix(debian): take installed files from the origin layer [backport: release/v0.52] (#​6892)

v0.52.1

Compare Source

Changelog

  • a3caf06 release: v0.52.1 [release/v0.52] (#​6877)
  • 01dbb42 fix(nodejs): fix infinite loop when package link from package-lock.json file is broken [backport: release/v0.52] (#​6888)
  • f186d22 fix(sbom): don't overwrite srcEpoch when decoding SBOM files [backport: release/v0.52] (#​6881)
  • 093c0ae fix(python): compare pkg names from poetry.lock and pyproject.toml in lowercase [backport: release/v0.52] (#​6878)
  • 6bfda76 Merge pull request #​6879 from aquasecurity/backport-pr-6864-to-release/v0.52
  • 53850c8 docs: explain how VEX is applied (#​6864)
  • 2211962 Merge pull request #​6875 from aquasecurity/backport-pr-6857-to-release/v0.52
  • a614b69 fix(nodejs): fix infinity loops for pnpm with cyclic imports (#​6857)

v0.52.0

Compare Source

Features
Bug Fixes

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the kind/dependencies Dependencies upgrade label Mar 19, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.50.0 chore(deps): update dependency trivy to v0.50.1 Mar 27, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.50.1 chore(deps): update dependency trivy to v0.50.2 Apr 22, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.50.2 chore(deps): update dependency trivy to v0.50.4 Apr 24, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.50.4 chore(deps): update dependency trivy to v0.51.0 May 3, 2024
@renovate renovate bot force-pushed the renovate/trivy-0.x branch 2 times, most recently from 524b9d4 to 2a4b5d4 Compare May 4, 2024 09:40
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.51.0 chore(deps): update dependency trivy to v0.51.1 May 4, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.51.1 chore(deps): update dependency trivy to v0.51.2 May 20, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.51.2 chore(deps): update dependency trivy to v0.51.4 May 24, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.51.4 chore(deps): update dependency trivy to v0.52.0 Jun 3, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.52.0 chore(deps): update dependency trivy to v0.52.1 Jun 10, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.52.1 chore(deps): update dependency trivy to v0.52.2 Jun 14, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.52.2 chore(deps): update dependency trivy to v0.53.0 Jul 1, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.53.0 chore(deps): update dependency trivy to v0.54.0 Jul 31, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.54.0 chore(deps): update dependency trivy to v0.54.1 Jul 31, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.54.1 chore(deps): update dependency trivy to v0.55.0 Sep 4, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.55.0 chore(deps): update dependency trivy to v0.55.1 Sep 12, 2024
@renovate renovate bot force-pushed the renovate/trivy-0.x branch 2 times, most recently from 2c03f01 to 5fffa16 Compare September 17, 2024 09:45
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.55.1 chore(deps): update dependency trivy to v0.55.2 Sep 17, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.55.2 chore(deps): update dependency trivy to v0.56.0 Oct 3, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.56.0 chore(deps): update dependency trivy to v0.56.1 Oct 3, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.56.1 chore(deps): update dependency trivy to v0.56.2 Oct 10, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.56.2 chore(deps): update dependency trivy to v0.57.0 Nov 2, 2024
@renovate renovate bot changed the title chore(deps): update dependency trivy to v0.57.0 chore(deps): update dependency trivy to v0.57.1 Nov 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
kind/dependencies Dependencies upgrade
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants