github aquasecurity/trivy v0.32.0
on GitHub

latest releases: v0.57.0, v0.56.2, v0.56.1...
2 years ago

Changelog

  • 585985e docs: add Rekor SBOM attestation scanning (#2893)
  • d30fa00 chore: narrow the owner scope (#2894)
  • 38c1513 fix: remove a patch number from the recommendation link (#2891)
  • ba29ce6 fix: enable parsing of UUID-only rekor entry ID (#2887)
  • 018eda6 docs(sbom): add SPDX scanning (#2885)
  • 20f1e59 docs: restructure docs and add tutorials (#2883)
  • 192fd78 feat(sbom): scan sbom attestation in the rekor record (#2699)
  • 597836c feat(k8s): support outdated-api (#2877)
  • 6c7bd67 chore(deps): bump github.com/moby/buildkit from 0.10.3 to 0.10.4 (#2815)
  • 4127043 fix(c): support revisions in Conan parser (#2878)
  • b677d7e feat: dynamic links support for scan results (#2838)
  • 8e03bbb chore(deps): bump go.uber.org/zap from 1.22.0 to 1.23.0 (#2818)
  • 27005c7 docs: update archlinux commands (#2876)
  • b6e394d feat(secret): add line from dockerfile where secret was added to secret result (#2780)
  • 9f6680a feat(sbom): Add unmarshal for spdx (#2868)
  • db0aaf1 chore(deps): bump github.com/aws/aws-sdk-go-v2/config (#2827)
  • bb3220c fix: revert asff arn and add documentation (#2852)
  • c51f2b8 docs: batch-import-findings limit (#2851)
  • 552732b chore(deps): bump golang from 1.19.0 to 1.19.1 (#2872)
  • 3165c37 feat(sbom): Add marshal for spdx (#2867)
  • dac2b4a build: checkout before setting up Go (#2873)
  • 39f83af chore: bump Go to 1.19 (#2861)
  • 0ce9583 docs: azure doc and trivy (#2869)
  • 2f37961 fix: Scan tarr'd dependencies (#2857)
  • db14ef3 chore(helm): helm test with ingress (#2630)
  • acb65d5 feat(report): add secrets to sarif format (#2820)
  • a18cd7c chore(deps): bump azure/setup-helm from 1.1 to 3.3 (#2807)
  • 2de903c refactor: add a new interface for initializing analyzers (#2835)
  • 63c3b8e chore(deps): bump github.com/aws/aws-sdk-go from 1.44.77 to 1.44.92 (#2840)
  • 6717665 fix: update ProductArn with account id (#2782)
  • 41a8496 feat(helm): make cache TTL configurable (#2798)
  • 0f1f2c1 build(): Sign releaser artifacts, not only container manifests (#2789)
  • b389a6f chore: improve doc about azure devops (#2795)
  • 9ef9fce chore(deps): bump sigstore/cosign-installer from 2.5.0 to 2.5.1 (#2804)
  • 7b3225d chore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.16.11 to 1.16.14 (#2828)
  • 37733ed chore(deps): bump github.com/aws/aws-sdk-go-v2/service/sts (#2825)
  • 44d7e8d docs: don't push patch versions (#2824)
  • 4839075 feat: add support for conan.lock file (#2779)
  • 6b4ddaa feat: cache merged layers
  • a18f398 chore(deps): bump helm/chart-testing-action from 2.2.1 to 2.3.0 (#2805)
  • 4dcce14 chore(deps): bump actions/cache from 3.0.5 to 3.0.8 (#2806)
  • db45447 chore(deps): bump github.com/caarlos0/env/v6 from 6.9.3 to 6.10.0 (#2811)
  • a246d0f chore(deps): bump github.com/aquasecurity/table from 1.7.2 to 1.8.0 (#2810)
  • 1800017 chore(deps): bump github.com/samber/lo from 1.27.0 to 1.27.1 (#2808)
  • 218e41a chore(deps): bump github.com/alicebob/miniredis/v2 from 2.22.0 to 2.23.0 (#2814)
  • a000ade feat: add support for gradle.lockfile (#2759)
  • 43113bc chore(mod): updates wazero to 1.0.0-pre.1 #2791
  • 5f0bf14 feat: move file patterns to a global level to be able to use it on any analyzer (#2539)
  • 2580ea1 Fix url validaton failures (#2783)
  • 2473b2c fix(image): add logic to detect empty layers (#2790)
  • 9d018d4 feat(rust): add dependency graph from Rust binaries (#2771)
Check out latest releases or
releases around aquasecurity/trivy v0.32.0

Don't miss a new trivy release

NewReleases is sending notifications on new releases.

Get notifications