Changelog
- ba825b2 chore(deps): bump trivy-iac to v0.7.1 (#5797)
- abf227e fix(bitnami): use a different comparer for detecting vulnerabilities (#5633)
- df49ea4 refactor(sbom): disable html escaping for CycloneDX (#5764)
- f25e2df refactor(purl): use
pubfrompackage-url(#5784) - b5e3b77 docs(python): add note to using
pip freezeforcompatible releases(#5760) - 6cc00c2 fix(report): use OS information for OS packages purl in
githubtemplate (#5783) - c317fe8 fix(report): fix error if miconfigs are empty (#5782)
- 9b4bced refactor(vuln): don't remove VendorSeverity in JSON report (#5761)
- be5a550 fix(report): don't mark misconfig passed tests as failed in junit.tpl (#5767)
- 01edbda docs(k8s): replace --scanners config with --scanners misconfig in docs (#5746)
- eb97419 fix(report): update Gitlab template (#5721)
- be1c554 feat(secret): add support of GitHub fine-grained tokens (#5740)
- a5342da fix(misconf): add an image misconf to result (#5731)
- 108a5b0 feat(secret): added support of Docker registry credentials (#5720)
- 6080e24 chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.18.45 to 1.25.11 (#5717)
- e27ec32 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ecr from 1.21.0 to 1.24.1 (#5701)