Update dependency aquasec/trivy to v0.32.0
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| aquasec/trivy | ironbank-docker | minor |
0.31.3 -> 0.32.0
|
| aquasec/trivy | minor |
0.31.3 -> 0.32.0
|
|
| aquasec/trivy | stage | minor |
0.31.3 -> 0.32.0
|
Release Notes
aquasecurity/trivy
v0.32.0
Changelog
-
585985edocs: add Rekor SBOM attestation scanning (#2893) -
d30fa00chore: narrow the owner scope (#2894) -
38c1513fix: remove a patch number from the recommendation link (#2891) -
ba29ce6fix: enable parsing of UUID-only rekor entry ID (#2887) -
018eda6docs(sbom): add SPDX scanning (#2885) -
20f1e59docs: restructure docs and add tutorials (#2883) -
192fd78feat(sbom): scan sbom attestation in the rekor record (#2699) -
597836cfeat(k8s): support outdated-api (#2877) -
6c7bd67chore(deps): bump github.com/moby/buildkit from 0.10.3 to 0.10.4 (#2815) -
4127043fix(c): support revisions in Conan parser (#2878) -
b677d7efeat: dynamic links support for scan results (#2838) -
8e03bbbchore(deps): bump go.uber.org/zap from 1.22.0 to 1.23.0 (#2818) -
27005c7docs: update archlinux commands (#2876) -
b6e394dfeat(secret): add line from dockerfile where secret was added to secret result (#2780) -
9f6680afeat(sbom): Add unmarshal for spdx (#2868) -
db0aaf1chore(deps): bump github.com/aws/aws-sdk-go-v2/config (#2827) -
bb3220cfix: revert asff arn and add documentation (#2852) -
c51f2b8docs: batch-import-findings limit (#2851) -
552732bchore(deps): bump golang from 1.19.0 to 1.19.1 (#2872) -
3165c37feat(sbom): Add marshal for spdx (#2867) -
dac2b4abuild: checkout before setting up Go (#2873) -
39f83afchore: bump Go to 1.19 (#2861) -
0ce9583docs: azure doc and trivy (#2869) -
2f37961fix: Scan tarr'd dependencies (#2857) -
db14ef3chore(helm): helm test with ingress (#2630) -
acb65d5feat(report): add secrets to sarif format (#2820) -
a18cd7cchore(deps): bump azure/setup-helm from 1.1 to 3.3 (#2807) -
2de903crefactor: add a new interface for initializing analyzers (#2835) -
63c3b8echore(deps): bump github.com/aws/aws-sdk-go from 1.44.77 to 1.44.92 (#2840) -
6717665fix: update ProductArn with account id (#2782) -
41a8496feat(helm): make cache TTL configurable (#2798) -
0f1f2c1build(): Sign releaser artifacts, not only container manifests (#2789) -
b389a6fchore: improve doc about azure devops (#2795) -
9ef9fcechore(deps): bump sigstore/cosign-installer from 2.5.0 to 2.5.1 (#2804) -
7b3225dchore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.16.11 to 1.16.14 (#2828) -
37733edchore(deps): bump github.com/aws/aws-sdk-go-v2/service/sts (#2825) -
44d7e8ddocs: don't push patch versions (#2824) -
4839075feat: add support for conan.lock file (#2779) -
6b4ddaafeat: cache merged layers -
a18f398chore(deps): bump helm/chart-testing-action from 2.2.1 to 2.3.0 (#2805) -
4dcce14chore(deps): bump actions/cache from 3.0.5 to 3.0.8 (#2806) -
db45447chore(deps): bump github.com/caarlos0/env/v6 from 6.9.3 to 6.10.0 (#2811) -
a246d0fchore(deps): bump github.com/aquasecurity/table from 1.7.2 to 1.8.0 (#2810) -
1800017chore(deps): bump github.com/samber/lo from 1.27.0 to 1.27.1 (#2808) -
218e41achore(deps): bump github.com/alicebob/miniredis/v2 from 2.22.0 to 2.23.0 (#2814) -
a000adefeat: add support for gradle.lockfile (#2759) -
43113bcchore(mod): updates wazero to 1.0.0-pre.1 #2791 -
5f0bf14feat: move file patterns to a global level to be able to use it on any analyzer (#2539) -
2580ea1Fix url validaton failures (#2783) -
2473b2cfix(image): add logic to detect empty layers (#2790) -
9d018d4feat(rust): add dependency graph from Rust binaries (#2771)
Configuration
-
If you want to rebase/retry this MR, click this checkbox.
This MR has been generated by Renovate Bot.