-
Notifications
You must be signed in to change notification settings - Fork 50
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps): update dependency trivy to v0.57.1 #174
Open
renovate
wants to merge
1
commit into
master
Choose a base branch
from
renovate/trivy-0.x
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
March 27, 2024 12:08
8cfd379
to
93b864a
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.50.0
chore(deps): update dependency trivy to v0.50.1
Mar 27, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
April 22, 2024 17:07
93b864a
to
3e900ef
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.50.1
chore(deps): update dependency trivy to v0.50.2
Apr 22, 2024
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.50.2
chore(deps): update dependency trivy to v0.50.4
Apr 24, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
April 24, 2024 14:14
3e900ef
to
b2af91d
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.50.4
chore(deps): update dependency trivy to v0.51.0
May 3, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
2 times, most recently
from
May 4, 2024 09:40
524b9d4
to
2a4b5d4
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.51.0
chore(deps): update dependency trivy to v0.51.1
May 4, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
May 20, 2024 08:58
2a4b5d4
to
c7277da
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.51.1
chore(deps): update dependency trivy to v0.51.2
May 20, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
May 24, 2024 14:23
c7277da
to
598fc0a
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.51.2
chore(deps): update dependency trivy to v0.51.4
May 24, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
June 3, 2024 09:04
598fc0a
to
dda71c5
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.51.4
chore(deps): update dependency trivy to v0.52.0
Jun 3, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
June 10, 2024 12:41
dda71c5
to
b944d87
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.52.0
chore(deps): update dependency trivy to v0.52.1
Jun 10, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
June 14, 2024 11:08
b944d87
to
b2e06eb
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.52.1
chore(deps): update dependency trivy to v0.52.2
Jun 14, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
July 1, 2024 13:03
b2e06eb
to
504f124
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.52.2
chore(deps): update dependency trivy to v0.53.0
Jul 1, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
July 31, 2024 09:10
504f124
to
c6beb7d
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.53.0
chore(deps): update dependency trivy to v0.54.0
Jul 31, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
July 31, 2024 18:20
c6beb7d
to
7941b6e
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.54.0
chore(deps): update dependency trivy to v0.54.1
Jul 31, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
September 4, 2024 01:55
7941b6e
to
5668d6c
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.54.1
chore(deps): update dependency trivy to v0.55.0
Sep 4, 2024
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.55.0
chore(deps): update dependency trivy to v0.55.1
Sep 12, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
2 times, most recently
from
September 17, 2024 09:45
2c03f01
to
5fffa16
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.55.1
chore(deps): update dependency trivy to v0.55.2
Sep 17, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
October 3, 2024 09:02
5fffa16
to
3ad0300
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.55.2
chore(deps): update dependency trivy to v0.56.0
Oct 3, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
October 3, 2024 16:09
3ad0300
to
a40f7a1
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.56.0
chore(deps): update dependency trivy to v0.56.1
Oct 3, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
October 10, 2024 13:29
a40f7a1
to
8483dc6
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.56.1
chore(deps): update dependency trivy to v0.56.2
Oct 10, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
November 2, 2024 07:15
8483dc6
to
fe24a2d
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.56.2
chore(deps): update dependency trivy to v0.57.0
Nov 2, 2024
renovate
bot
force-pushed
the
renovate/trivy-0.x
branch
from
November 18, 2024 22:45
fe24a2d
to
71745fa
Compare
renovate
bot
changed the title
chore(deps): update dependency trivy to v0.57.0
chore(deps): update dependency trivy to v0.57.1
Nov 18, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
0.48.2
->0.57.1
Release Notes
aquasecurity/trivy (trivy)
v0.57.1
Compare Source
v0.57.0
Compare Source
⚠ BREAKING CHANGES
Features
trivy auth
(#7664) (27117f8)trivy auth
totrivy registry
(#7727) (633a7ab)CycloneDX
reports (#7507) (c225883)Bug Fixes
clean --all
deletes only relevant dirs (#7704) (672e886)version
andscope
from upper/rootdepManagement
anddependencies
into parents (#7541) (778df82)git clone
output to Stderr (#7561) (fdf203c)Annotation
instead ofAttributionTexts
forSPDX
formats (#7811) (f2bb9c6)v0.56.2
Compare Source
Changelog
f2252c8
release: v0.56.2 [release/v0.56] (#7694)f6700ec
fix(redhat): include arch in PURL qualifiers [backport: release/v0.56] (#7702)25d2540
fix(sbom): add options for DBs in private registries [backport: release/v0.56] (#7691)v0.56.1
Compare Source
Changelog
95dbf11
release: v0.56.1 [release/v0.56] (#7648)5dbdadf
fix(db): fix javadb downloading error handling [backport: release/v0.56] (#7646)v0.56.0
Compare Source
Features
pom.xml
dependency versions can't be detected (#7520) (b836232)--skip-*
for all included modules (#7579) (c0e8da3)Bug Fixes
DownloadedAt
fortrivy-java-db
(#7592) (13ef3e7)dependencyManagement
from root/child pom's for dependencies from parents (#7497) (5442949)ExperimentalModifiedFindings
(#7463) (7ff9aff)framework
aslibrary
when unmarshallingCycloneDX
files (#7527) (aeb7039)Performance Improvements
Reverts
test
scope forpom.xml
files (#7488) (b0222fe)v0.55.2
Compare Source
Changelog
928c7c0
release: v0.55.2 [release/v0.55] (#7523)14a058f
fix(java): usedependencyManagement
from root/child pom's for dependencies from parents [backport: release/v0.55] (#7521)990bc4e
chore(deps): bump alpine from 3.20.0 to 3.20.3 [backport: release/v0.55] (#7516)v0.55.1
Compare Source
⚡Release highlights and summary⚡
👉https://github.com/aquasecurity/trivy/discussions/7494
Changelog
https://github.com/aquasecurity/trivy/blob/release/v0.55/CHANGELOG.md#0551-2024-09-12
v0.55.0
Compare Source
⚠ BREAKING CHANGES
Features
toolchain
asstdlib
version forgo.mod
files (#7163) (2d80769)test
scope support forpom.xml
files (#7414) (2d97700)--path-prefix
flag for client/server mode (#7321) (24a4563)--detection-priority
flag for accuracy tuning (#7288) (fd8348d)Bug Fixes
--clear-cache
(#7281) (2a0e529)kind
andapiVersion
ofvolumeClaimTemplate
element (#7362) (da4ebfa)importers
to detect dev deps from pnpm-lock.yaml file (#7387) (fd9ed3a)Message
field inasff.tpl
template (#7401) (dd9733e)NOASSERTION
for licenses fields in SPDX formats (#7403) (c96dcdd).eyJ
keyword for JWT secret (#7410) (bf64003)Performance Improvements
v0.54.1
Compare Source
Changelog
854c61d
release: v0.54.1 [release/v0.54] (#7282)334a1c2
fix(flag): incorrect behavior for deprected flag--clear-cache
[backport: release/v0.54] (#7285)f61725c
fix(java): Return error when trying to find a remote pom to avoid segfault [backport: release/v0.54] (#7283)a7b7117
fix(plugin): do not call GitHub content API for releases and tags [backport: release/v0.54] (#7279)v0.54.0
Compare Source
Features
log.FilePath()
function for logger (#7080) (1f5f348)--vuln-type
flag to--pkg-types
flag (#7104) (7cbdb0a)SPDX
andCycloneDX
reports (#7257) (4a2f492)--pkg-relationships
(#7237) (5c37361)Bug Fixes
*.deps.json
files (#7039) (5bc662b)nuget package dir not found
log only when checkingnuget
packages (#7194) (d76feba)pom
init
dir are not found (#7245) (4e54a7e)go-mvn-version
to removePackage
duplicates (#7088) (a7a304d)latest
version for filesyarn.lock
+package.json
(#7110) (54bb8bd)hugging-face-access-token
(#7216) (8c87194)Performance Improvements
bytes.Index
inemptyLineSplit
to cut allocation (#7065) (acbec05)v0.53.0
Compare Source
⚠ BREAKING CHANGES
Features
environment.yml
files (#6953) (654217a)maven-metadata.xml
files for remote snapshot repositories. (#6950) (1f8fca1)CycloneDX v1.6
(#6903) (09e50ce)Bug Fixes
file-patterns
and scan.conan2
cache dir (#6949) (38b35dd)advisory.url
(#6952) (417212e)image.inspect.Created
field only for non-empty values (#6948) (0af5730),
,or
, etc. (#6916) (52f7aa5)package-lock.json
file is broken (#6858) (cf5aa33)pnpm
with cyclic imports (#6857) (7d083bc)--insecure
(#7022) (3d02a31)poetry.lock
andpyproject.toml
in lowercase (#6852) (faa9d92)srcEpoch
when decoding SBOM files (#6866) (04af59c)purl
for maven pkgs (#7008) (a76e328)purl
forbitnami
pkg names (#6982) (7eabb92)Asymmetric Private Key
shouldn't start with space (#6867) (bb26445)v0.52.2
Compare Source
Changelog
8709d4f
release: v0.52.2 [release/v0.52] (#6896)a4b8ad7
ci: useubuntu-latest-m
runner [backport: release/v0.52] (#6933)2b711bc
chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 [backport: release/v0.52] (#6919)191d31e
test: bump docker API to 1.45 [backport: release/v0.52] (#6922)3f5874c
ci: bumpgithub.com/goreleaser/goreleaser
tov2.0.0
[backport: release/v0.52] (#6893)8f8c76a
fix(debian): take installed files from the origin layer [backport: release/v0.52] (#6892)v0.52.1
Compare Source
Changelog
a3caf06
release: v0.52.1 [release/v0.52] (#6877)01dbb42
fix(nodejs): fix infinite loop when package link frompackage-lock.json
file is broken [backport: release/v0.52] (#6888)f186d22
fix(sbom): don't overwritesrcEpoch
when decoding SBOM files [backport: release/v0.52] (#6881)093c0ae
fix(python): compare pkg names frompoetry.lock
andpyproject.toml
in lowercase [backport: release/v0.52] (#6878)6bfda76
Merge pull request #6879 from aquasecurity/backport-pr-6864-to-release/v0.5253850c8
docs: explain how VEX is applied (#6864)2211962
Merge pull request #6875 from aquasecurity/backport-pr-6857-to-release/v0.52a614b69
fix(nodejs): fix infinity loops forpnpm
with cyclic imports (#6857)v0.52.0
Compare Source
Features
requirement.txt
files (#6782) (29615be)requirement.txt
files (#6729) (2bc54ad)Bug Fixes
pip
deps forenvironment.yml
files (#6675) (150a773)gobinaries
(#6710) (c96f2a5).version
|.ver
(no prefixes) ldflags forgobinaries
(#6705) (afb4f9d)Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.