Changes
This release contains the following changes 🎉. Help spread the word or leave a GitHub star if you like it 😉
🚀 Features
- Add / Document secureCodeBox Operator Prometheus Metrics @J12934 (#2581)
- Add new
triggercommand for scbctl @Freedisch (#2570)
🚓 Security Scanner
- Add podSecurityContext to zap-scan-type template @eliihen (#2576)
- Upgraded nuclei from v3.2.9 to v3.3.0 @secureCodeBoxBot (#2579)
- Upgraded semgrep from 1.78.0 to 1.82.0 @secureCodeBoxBot (#2604, #2594, #2585, #2569)
- Upgraded trivy from 0.52.2 to 0.54.0 @secureCodeBoxBot (#2602, #2552)
- Upgraded trivy-sbom from 0.52.2 to 0.54.0 @secureCodeBoxBot (#2603, #2554)
- Upgraded typo3scan from v1.1.4 to v1.2-final @secureCodeBoxBot (#2558)
🐛 Bug Fixes
- Fixed Scan not marked as Errored when exceeding the Job BackoffLimit @Ilyesbdlala (#2568)
- Fix nodeSelectors not working properly @J12934 (#2582)
- Fix Health/Readyness Check Issues with Kubernetes AutoDiscovery @J12934 (#2578)
📚 Documentation
- Add docs and cli completion for
triggerandscancommand @Freedisch (#2587)
🔧 Maintenance
- Add Stargazers Over Time @Weltraumschaf (#2563)
- Switch pipeline to use the same user / variable everywhere @J12934 (#2562)
📌 Dependencies
Minor dependency updates (50 pull requests). Click to expand.
- Use Latest DefectDojo Client Lib @Weltraumschaf (#2599)
- Bump braces from 3.0.2 to 3.0.3 in /hooks/notification/hook @dependabot (#2600)
- Bump the npm-version-updates group with 2 updates @dependabot (#2598)
- Bump braces from 3.0.2 to 3.0.3 in /hooks/generic-webhook/hook @dependabot (#2596)
- Bump ws from 8.13.0 to 8.18.0 in /hooks/cascading-scans/hook @dependabot (#2597)
- Bump braces from 3.0.2 to 3.0.3 in /hooks/finding-post-processing/hook @dependabot (#2592)
- Bump braces from 3.0.2 to 3.0.3 in /hooks/cascading-scans/hook @dependabot (#2590)
- Bump ws from 8.12.0 to 8.18.0 in /hooks @dependabot (#2591)
- Bump the npm-version-updates group with 2 updates @dependabot (#2588)
- Bump ws from 8.12.0 to 8.18.0 in /auto-discovery/kubernetes/pull-secret-extractor/integration-test @dependabot (#2577)
- Bump org.springframework:spring-web from 6.1.10 to 6.1.11 in /hooks/persistence-defectdojo/hook in the gradle-version-updates group @dependabot (#2572)
- Bump the npm-version-updates group with 2 updates @dependabot (#2571)
- Bump certifi from 2023.7.22 to 2024.7.4 in /auto-discovery/kubernetes/pull-secret-extractor @dependabot (#2564)
- Bump fsfe/reuse-action from 3 to 4 in /.github/workflows in the github-actions-version-updates group @dependabot (#2567)
- Bump the npm-version-updates group with 2 updates @dependabot (#2565)
- Bump the gradle-version-updates group in /hooks/persistence-defectdojo/hook with 5 updates @dependabot (#2566)
- Bump the gradle-version-updates group across 1 directory with 8 updates @dependabot (#2556)
- Bump @types/node from 20.14.8 to 20.14.9 in the npm-version-updates group @dependabot (#2550)
Distribution
Contributors
Thanks to all our contributors supporting this project 🤗
@Freedisch, @Ilyesbdlala, @J12934, @Weltraumschaf, and @eliihen