Update dependency aquasec/trivy to v0.31.0
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| aquasec/trivy | ironbank-docker | minor |
0.30.4 -> 0.31.0
|
| aquasec/trivy | minor |
0.30.4 -> 0.31.0
|
|
| aquasec/trivy | stage | minor |
0.30.4 -> 0.31.0
|
Release Notes
aquasecurity/trivy
v0.31.0
Changelog
-
917f388fix(flag): add error when there are no supported security checks (#2713) -
aef02aafix(vuln): continue scanning when no vuln found in the first application (#2712) -
ed1fa89revert: add new classes for vulnerabilities (#2701) -
a5d4f7ffeat(secret): detect secrets removed or overwritten in upper layer (#2611) -
ddffb1bfix(cli): secret scanning perf link fix (#2607) -
bc85441chore(deps): bump github.com/spf13/viper from 1.8.1 to 1.12.0 (#2650) -
b259b25feat: Add AWS Cloud scanning (#2493) -
f8edda8docs: specify the type when verifying an attestation (#2697) -
6879413docs(sbom): improve SBOM docs by adding a description for scanning SBOM attestation (#2690) -
babfb17fix(rpc): scanResponse rpc conversion for custom resources (#2692) -
517d2e0feat(rust): Add support for cargo-auditable (#2675) -
0112385feat: Support passing value overrides for configuration checks (#2679) -
317a026feat(sbom): add support for scanning a sbom attestation (#2652) -
390c256chore(image): skip symlinks and hardlinks from tar scan (#2634) -
63c33bffix(report): Update junit.tpl (#2677) -
de365c8fix(cyclonedx): add nil check to metadata.component (#2673) -
50db7dadocs(secret): fix missing and broken links (#2674) -
e848e6drefactor(cyclonedx): implement json.Unmarshaler (#2662) -
df0b5e4chore(deps): bump github.com/aquasecurity/table from 1.6.0 to 1.7.2 (#2643) -
006b8a5chore(deps): bump github.com/Azure/go-autorest/autorest (#2642) -
8d10de8feat(kubernetes): add option to specify kubeconfig file path (#2576) -
169c55cdocs: follow Debian's "instructions to connect to a third-party repository" (#2511) -
9b21831chore(deps): bump github.com/google/licenseclassifier/v2 (#2644) -
94db37echore(deps): bump github.com/samber/lo from 1.24.0 to 1.27.0 (#2645) -
d983805chore(deps): bump github.com/Azure/go-autorest/autorest/adal (#2647) -
d8a9572chore(deps): bump github.com/cheggaaa/pb/v3 from 3.0.8 to 3.1.0 (#2646) -
3ab3050chore(deps): bump sigstore/cosign-installer from 2.4.1 to 2.5.0 (#2641) -
75984f3chore(deps): bump actions/cache from 3.0.4 to 3.0.5 (#2640) -
525c253chore(deps): bump alpine from 3.16.0 to 3.16.1 (#2639) -
5e327e4chore(deps): bump golang from 1.18.3 to 1.18.4 (#2638) -
469d771chore(deps): bump github.com/aws/aws-sdk-go from 1.44.48 to 1.44.66 (#2648) -
6bc8c87chore(deps): bump github.com/open-policy-agent/opa from 0.42.0 to 0.43.0 (#2649) -
6ab832dchore(deps): bump google.golang.org/protobuf from 1.28.0 to 1.28.1 (#2651) -
3a10497feat(alma): set AlmaLinux 9 EOL (#2653) -
55825d7fix(misconf): Allow quotes in Dockerfile WORKDIR when detecting relative dirs (#2636) -
6bb0e4btest(misconf): add tests for misconf handler for dockerfiles (#2621) -
44d53befeat(oracle): set Oracle Linux 9 EOL (#2635) -
f396c67BREAKING: add new classes for vulnerabilities (#2541) -
3cd88abfix(secret): add newline escaping for asymmetric private key (#2532) -
ea91fb9docs: improve formatting (#2572) -
d0ca610feat(helm): allows users to define an existing secret for tokens (#2587) -
d0ba59adocs(mariner): use tdnf in fs usage example (#2616) -
d7742b6docs: remove unnecessary double quotation marks (#2609) -
27027cffix: Fix --file-patterns flag (#2625) -
c2a7ad5feat(report): add support for Cosign vulnerability attestation (#2567) -
dfb86f4docs(mariner): use v2.0 in examples (#2602) -
946ce16feat(report): add secrets template for codequality report (#2461)
Configuration
-
If you want to rebase/retry this MR, click this checkbox.
This MR has been generated by Renovate Bot.