The Howard project, named after "The Godfather of Clouds" Luke Howard, orchestrates the Kubernetes-based cloud infrastructure for the Canadian Food Inspection Agency's AI lab, managing applications like Nachet, Finesse, and Louis. It prioritizes robustness, security and efficiency
aquasecurity/trivy (ghcr.io/aquasecurity/trivy)
### [`v0.53.0`](https://togithub.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0530-2024-07-01)
[Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.52.2...v0.53.0)
##### ⚠ BREAKING CHANGES
- **k8s:** node-collector dynamic commands support ([#6861](https://togithub.com/aquasecurity/trivy/issues/6861))
- add clean subcommand ([#6993](https://togithub.com/aquasecurity/trivy/issues/6993))
- **aws:** Remove aws subcommand ([#6995](https://togithub.com/aquasecurity/trivy/issues/6995))
##### Features
- add clean subcommand ([#6993](https://togithub.com/aquasecurity/trivy/issues/6993)) ([8d0ae1f](https://togithub.com/aquasecurity/trivy/commit/8d0ae1f5de72d92a043dcd6b7c164d30e51b6047))
- Add local ImageID to SARIF metadata ([#6522](https://togithub.com/aquasecurity/trivy/issues/6522)) ([f144e91](https://togithub.com/aquasecurity/trivy/commit/f144e912d34234f00b5a13b7a11a0019fa978b27))
- add memory cache backend ([#7048](https://togithub.com/aquasecurity/trivy/issues/7048)) ([55ccd06](https://togithub.com/aquasecurity/trivy/commit/55ccd06df43f6ff28685f46d215ccb70f55916d2))
- **aws:** Remove aws subcommand ([#6995](https://togithub.com/aquasecurity/trivy/issues/6995)) ([979e118](https://togithub.com/aquasecurity/trivy/commit/979e118a9e0ca8943bef9143f492d7eb1fd4d863))
- **conda:** add licenses support for `environment.yml` files ([#6953](https://togithub.com/aquasecurity/trivy/issues/6953)) ([654217a](https://togithub.com/aquasecurity/trivy/commit/654217a65485ca0a07771ea61071977894eb4920))
- **dart:** use first version of constraint for dependencies using SDK version ([#6239](https://togithub.com/aquasecurity/trivy/issues/6239)) ([042d6b0](https://togithub.com/aquasecurity/trivy/commit/042d6b08c283105c258a3dda98983b345a5305c3))
- **image:** Set User-Agent header for Trivy container registry requests ([#6868](https://togithub.com/aquasecurity/trivy/issues/6868)) ([9b31697](https://togithub.com/aquasecurity/trivy/commit/9b31697274c8743d6e5a8f7a1a05daf60cd15910))
- **java:** add support for `maven-metadata.xml` files for remote snapshot repositories. ([#6950](https://togithub.com/aquasecurity/trivy/issues/6950)) ([1f8fca1](https://togithub.com/aquasecurity/trivy/commit/1f8fca1fc77b989bb4e3ba820b297464dbdd825f))
- **java:** add support for sbt projects using sbt-dependency-lock ([#6882](https://togithub.com/aquasecurity/trivy/issues/6882)) ([f18d035](https://togithub.com/aquasecurity/trivy/commit/f18d035ae13b281c96aa4ed69ca32e507d336e66))
- **k8s:** node-collector dynamic commands support ([#6861](https://togithub.com/aquasecurity/trivy/issues/6861)) ([8d618e4](https://togithub.com/aquasecurity/trivy/commit/8d618e48a2f1b60c2e4c49cdd9deb8eb45c972b0))
- **misconf:** add metadata to Cloud schema ([#6831](https://togithub.com/aquasecurity/trivy/issues/6831)) ([02d5404](https://togithub.com/aquasecurity/trivy/commit/02d540478d495416b50d7e8b187ff9f5bba41f45))
- **misconf:** add support for AWS::EC2::SecurityGroupIngress/Egress ([#6755](https://togithub.com/aquasecurity/trivy/issues/6755)) ([55fa610](https://togithub.com/aquasecurity/trivy/commit/55fa6109cd0463fd3221aae41ca7b1d8c44ad430))
- **misconf:** API Gateway V1 support for CloudFormation ([#6874](https://togithub.com/aquasecurity/trivy/issues/6874)) ([8491469](https://togithub.com/aquasecurity/trivy/commit/8491469f0b35bd9df706a433669f5b62239d4ef3))
- **misconf:** support of selectors for all providers for Rego ([#6905](https://togithub.com/aquasecurity/trivy/issues/6905)) ([bc3741a](https://togithub.com/aquasecurity/trivy/commit/bc3741ae2c68cdd00fc0aef7e51985568b2eb78a))
- **php:** add installed.json file support ([#4865](https://togithub.com/aquasecurity/trivy/issues/4865)) ([edc556b](https://togithub.com/aquasecurity/trivy/commit/edc556b85e3554c31e19b1ece189effb9ba2be12))
- **plugin:** add support for nested archives ([#6845](https://togithub.com/aquasecurity/trivy/issues/6845)) ([622c67b](https://togithub.com/aquasecurity/trivy/commit/622c67b7647f94d0a0ca3acf711d8f847cdd8d98))
- **sbom:** migrate to `CycloneDX v1.6` ([#6903](https://togithub.com/aquasecurity/trivy/issues/6903)) ([09e50ce](https://togithub.com/aquasecurity/trivy/commit/09e50ce6a82073ba62f1732d5aa0cd2701578693))
##### Bug Fixes
- **c:** don't skip conan files from `file-patterns` and scan `.conan2` cache dir ([#6949](https://togithub.com/aquasecurity/trivy/issues/6949)) ([38b35dd](https://togithub.com/aquasecurity/trivy/commit/38b35dd3c804027e7a6e6a9d3c87b7ac333896c5))
- **cli:** show info message only when --scanners is available ([#7032](https://togithub.com/aquasecurity/trivy/issues/7032)) ([e9fc3e3](https://togithub.com/aquasecurity/trivy/commit/e9fc3e3397564512038ddeca2adce0efcb3f93c5))
- **cyclonedx:** trim non-URL info for `advisory.url` ([#6952](https://togithub.com/aquasecurity/trivy/issues/6952)) ([417212e](https://togithub.com/aquasecurity/trivy/commit/417212e0930aa52a27ebdc1b9370d2943ce0f8fa))
- **debian:** take installed files from the origin layer ([#6849](https://togithub.com/aquasecurity/trivy/issues/6849)) ([089b953](https://togithub.com/aquasecurity/trivy/commit/089b953462260f01c40bdf588b2568ae0ef658bc))
- **image:** parse `image.inspect.Created` field only for non-empty values ([#6948](https://togithub.com/aquasecurity/trivy/issues/6948)) ([0af5730](https://togithub.com/aquasecurity/trivy/commit/0af5730cbe56686417389c2fad643c1bdbb33999))
- **license:** return license separation using separators `,`, `or`, etc. ([#6916](https://togithub.com/aquasecurity/trivy/issues/6916)) ([52f7aa5](https://togithub.com/aquasecurity/trivy/commit/52f7aa54b520a90a19736703f8ea63cc20fab104))
- **misconf:** fix caching of modules in subdirectories ([#6814](https://togithub.com/aquasecurity/trivy/issues/6814)) ([0bcfedb](https://togithub.com/aquasecurity/trivy/commit/0bcfedbcaa9bbe30ee5ecade5b98e9ce3cc54c9b))
- **misconf:** fix parsing of engine links and frameworks ([#6937](https://togithub.com/aquasecurity/trivy/issues/6937)) ([ec68c9a](https://togithub.com/aquasecurity/trivy/commit/ec68c9ab4580d057720179173d58734402c92af4))
- **misconf:** handle source prefix to ignore ([#6945](https://togithub.com/aquasecurity/trivy/issues/6945)) ([c3192f0](https://togithub.com/aquasecurity/trivy/commit/c3192f061d7e84eaf38df8df7c879dc00b4ca137))
- **misconf:** parsing numbers without fraction as int ([#6834](https://togithub.com/aquasecurity/trivy/issues/6834)) ([8141a13](https://togithub.com/aquasecurity/trivy/commit/8141a137ba50b553a9da877d95c7ccb491d041c6))
- **nodejs:** fix infinite loop when package link from `package-lock.json` file is broken ([#6858](https://togithub.com/aquasecurity/trivy/issues/6858)) ([cf5aa33](https://togithub.com/aquasecurity/trivy/commit/cf5aa336e660e4c98481ebf8d15dd4e54c38581e))
- **nodejs:** fix infinity loops for `pnpm` with cyclic imports ([#6857](https://togithub.com/aquasecurity/trivy/issues/6857)) ([7d083bc](https://togithub.com/aquasecurity/trivy/commit/7d083bc890eccc3bf32765c6d7e922cab2e2ef94))
- **plugin:** respect `--insecure` ([#7022](https://togithub.com/aquasecurity/trivy/issues/7022)) ([3d02a31](https://togithub.com/aquasecurity/trivy/commit/3d02a31b44924f9e2495aae087f7ca9de3314db4))
- **purl:** add missed os types ([#6955](https://togithub.com/aquasecurity/trivy/issues/6955)) ([2d85a00](https://togithub.com/aquasecurity/trivy/commit/2d85a003b22298d1101f84559f7c6b470f2b3909))
- **python:** compare pkg names from `poetry.lock` and `pyproject.toml` in lowercase ([#6852](https://togithub.com/aquasecurity/trivy/issues/6852)) ([faa9d92](https://togithub.com/aquasecurity/trivy/commit/faa9d92cfeb8d924deda2dac583b6c97099c08d9))
- **sbom:** don't overwrite `srcEpoch` when decoding SBOM files ([#6866](https://togithub.com/aquasecurity/trivy/issues/6866)) ([04af59c](https://togithub.com/aquasecurity/trivy/commit/04af59c2906bcfc7f7970b4e8f45a90f04313170))
- **sbom:** fix panic when scanning SBOM file without root component into SBOM format ([#7051](https://togithub.com/aquasecurity/trivy/issues/7051)) ([3d4ae8b](https://togithub.com/aquasecurity/trivy/commit/3d4ae8b5be94cd9b00badeece8d86c2258b2cd90))
- **sbom:** take pkg name from `purl` for maven pkgs ([#7008](https://togithub.com/aquasecurity/trivy/issues/7008)) ([a76e328](https://togithub.com/aquasecurity/trivy/commit/a76e3286c413de3dec55394fb41dd627dfee37ae))
- **sbom:** use `purl` for `bitnami` pkg names ([#6982](https://togithub.com/aquasecurity/trivy/issues/6982)) ([7eabb92](https://togithub.com/aquasecurity/trivy/commit/7eabb92ec2e617300433445718be07ac74956454))
- **sbom:** use package UIDs for uniqueness ([#7042](https://togithub.com/aquasecurity/trivy/issues/7042)) ([14d71ba](https://togithub.com/aquasecurity/trivy/commit/14d71ba63c39e51dd4179ba2d6002b46e1816e90))
- **secret:** `Asymmetric Private Key` shouldn't start with space ([#6867](https://togithub.com/aquasecurity/trivy/issues/6867)) ([bb26445](https://togithub.com/aquasecurity/trivy/commit/bb26445e3df198df77930329f532ac5ab7a67af2))
- **suse:** Add SLES 15.6 and Leap 15.6 ([#6964](https://togithub.com/aquasecurity/trivy/issues/6964)) ([5ee4e9d](https://togithub.com/aquasecurity/trivy/commit/5ee4e9d30ea814f60fd5705361cabf2e83a47a78))
- use embedded when command path not found ([#7037](https://togithub.com/aquasecurity/trivy/issues/7037)) ([137c916](https://togithub.com/aquasecurity/trivy/commit/137c9164238ffd989a0c5ed24f23a55bbf341f6e))
### [`v0.52.2`](https://togithub.com/aquasecurity/trivy/releases/tag/v0.52.2)
[Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.52.1...v0.52.2)
#### Changelog
- [`8709d4f`](https://togithub.com/aquasecurity/trivy/commit/8709d4f9c) release: v0.52.2 \[release/v0.52] ([#6896](https://togithub.com/aquasecurity/trivy/issues/6896))
- [`a4b8ad7`](https://togithub.com/aquasecurity/trivy/commit/a4b8ad767) ci: use `ubuntu-latest-m` runner \[backport: release/v0.52] ([#6933](https://togithub.com/aquasecurity/trivy/issues/6933))
- [`2b711bc`](https://togithub.com/aquasecurity/trivy/commit/2b711bc26) chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 \[backport: release/v0.52] ([#6919](https://togithub.com/aquasecurity/trivy/issues/6919))
- [`191d31e`](https://togithub.com/aquasecurity/trivy/commit/191d31ef8) test: bump docker API to 1.45 \[backport: release/v0.52] ([#6922](https://togithub.com/aquasecurity/trivy/issues/6922))
- [`3f5874c`](https://togithub.com/aquasecurity/trivy/commit/3f5874c8a) ci: bump `github.com/goreleaser/goreleaser` to `v2.0.0` \[backport: release/v0.52] ([#6893](https://togithub.com/aquasecurity/trivy/issues/6893))
- [`8f8c76a`](https://togithub.com/aquasecurity/trivy/commit/8f8c76a2a) fix(debian): take installed files from the origin layer \[backport: release/v0.52] ([#6892](https://togithub.com/aquasecurity/trivy/issues/6892))
### [`v0.52.1`](https://togithub.com/aquasecurity/trivy/releases/tag/v0.52.1)
[Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.52.0...v0.52.1)
#### Changelog
- [`a3caf06`](https://togithub.com/aquasecurity/trivy/commit/a3caf0658) release: v0.52.1 \[release/v0.52] ([#6877](https://togithub.com/aquasecurity/trivy/issues/6877))
- [`01dbb42`](https://togithub.com/aquasecurity/trivy/commit/01dbb42ae) fix(nodejs): fix infinite loop when package link from `package-lock.json` file is broken \[backport: release/v0.52] ([#6888](https://togithub.com/aquasecurity/trivy/issues/6888))
- [`f186d22`](https://togithub.com/aquasecurity/trivy/commit/f186d22bf) fix(sbom): don't overwrite `srcEpoch` when decoding SBOM files \[backport: release/v0.52] ([#6881](https://togithub.com/aquasecurity/trivy/issues/6881))
- [`093c0ae`](https://togithub.com/aquasecurity/trivy/commit/093c0ae02) fix(python): compare pkg names from `poetry.lock` and `pyproject.toml` in lowercase \[backport: release/v0.52] ([#6878](https://togithub.com/aquasecurity/trivy/issues/6878))
- [`6bfda76`](https://togithub.com/aquasecurity/trivy/commit/6bfda7602) Merge pull request [#6879](https://togithub.com/aquasecurity/trivy/issues/6879) from aquasecurity/backport-pr-6864-to-release/v0.52
- [`53850c8`](https://togithub.com/aquasecurity/trivy/commit/53850c8b2) docs: explain how VEX is applied ([#6864](https://togithub.com/aquasecurity/trivy/issues/6864))
- [`2211962`](https://togithub.com/aquasecurity/trivy/commit/221196202) Merge pull request [#6875](https://togithub.com/aquasecurity/trivy/issues/6875) from aquasecurity/backport-pr-6857-to-release/v0.52
- [`a614b69`](https://togithub.com/aquasecurity/trivy/commit/a614b693d) fix(nodejs): fix infinity loops for `pnpm` with cyclic imports ([#6857](https://togithub.com/aquasecurity/trivy/issues/6857))
### [`v0.52.0`](https://togithub.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0520-2024-06-03)
[Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.51.4...v0.52.0)
##### Features
- Add Julia language analyzer support ([#5635](https://togithub.com/aquasecurity/trivy/issues/5635)) ([fecafb1](https://togithub.com/aquasecurity/trivy/commit/fecafb1fc5bb129c7485342a0775f0dd8bedd28e))
- add support for plugin index ([#6674](https://togithub.com/aquasecurity/trivy/issues/6674)) ([26faf8f](https://togithub.com/aquasecurity/trivy/commit/26faf8f3f04b1c5f9f81c03ffc6b2008732207e2))
- **misconf:** Add support for deprecating a check ([#6664](https://togithub.com/aquasecurity/trivy/issues/6664)) ([88702cf](https://togithub.com/aquasecurity/trivy/commit/88702cfd5918b093defc5b5580f7cbf16f5f2417))
- **misconf:** add Terraform 'removed' block to schema ([#6640](https://togithub.com/aquasecurity/trivy/issues/6640)) ([b7a0a13](https://togithub.com/aquasecurity/trivy/commit/b7a0a131a03ed49c08d3b0d481bc9284934fd6e1))
- **misconf:** register builtin Rego funcs from trivy-checks ([#6616](https://togithub.com/aquasecurity/trivy/issues/6616)) ([7c22ee3](https://togithub.com/aquasecurity/trivy/commit/7c22ee3df5ee51beb90e44428a99541b3d19ab98))
- **misconf:** resolve tf module from OpenTofu compatible registry ([#6743](https://togithub.com/aquasecurity/trivy/issues/6743)) ([ac74520](https://togithub.com/aquasecurity/trivy/commit/ac7452009bf7ca0fa8ee1de8807c792eabad405a))
- **misconf:** support for VPC resources for inbound/outbound rules ([#6779](https://togithub.com/aquasecurity/trivy/issues/6779)) ([349caf9](https://togithub.com/aquasecurity/trivy/commit/349caf96bc3dd81551d488044f1adfdb947f39fb))
- **misconf:** support symlinks inside of Helm archives ([#6621](https://togithub.com/aquasecurity/trivy/issues/6621)) ([4eae37c](https://togithub.com/aquasecurity/trivy/commit/4eae37c52b035b3576361c12f70d3d9517d0a73c))
- **nodejs:** add v9 pnpm lock file support ([#6617](https://togithub.com/aquasecurity/trivy/issues/6617)) ([1e08648](https://togithub.com/aquasecurity/trivy/commit/1e0864842e32a709941d4b4e8f521602bcee684d))
- **plugin:** specify plugin version ([#6683](https://togithub.com/aquasecurity/trivy/issues/6683)) ([d6dc567](https://togithub.com/aquasecurity/trivy/commit/d6dc56732babbc9d7f788c280a768d8648aa093d))
- **python:** add license support for `requirement.txt` files ([#6782](https://togithub.com/aquasecurity/trivy/issues/6782)) ([29615be](https://togithub.com/aquasecurity/trivy/commit/29615be85e8bfeaf5a0cd51829b1898c55fa4274))
- **python:** add line number support for `requirement.txt` files ([#6729](https://togithub.com/aquasecurity/trivy/issues/6729)) ([2bc54ad](https://togithub.com/aquasecurity/trivy/commit/2bc54ad2752aba5de4380cb92c13b09c0abefd73))
- **report:** Include licenses and secrets filtered by rego to ModifiedFindings ([#6483](https://togithub.com/aquasecurity/trivy/issues/6483)) ([fa3cf99](https://togithub.com/aquasecurity/trivy/commit/fa3cf993eace4be793f85907b42365269c597b91))
- **vex:** improve relationship support in CSAF VEX ([#6735](https://togithub.com/aquasecurity/trivy/issues/6735)) ([a447f6b](https://togithub.com/aquasecurity/trivy/commit/a447f6ba94b6f8b14177dc5e4369a788e2020d90))
- **vex:** support non-root components for products in OpenVEX ([#6728](https://togithub.com/aquasecurity/trivy/issues/6728)) ([9515695](https://togithub.com/aquasecurity/trivy/commit/9515695d45e9b5c20890e27e21e3ab45bfd4ce5f))
##### Bug Fixes
- clean up golangci lint configuration ([#6797](https://togithub.com/aquasecurity/trivy/issues/6797)) ([62de6f3](https://togithub.com/aquasecurity/trivy/commit/62de6f3feba6e4c56ad3922441d5b0f150c3d6b7))
- **cli:** always output fatal errors to stderr ([#6827](https://togithub.com/aquasecurity/trivy/issues/6827)) ([c2b9132](https://togithub.com/aquasecurity/trivy/commit/c2b9132a7e933a68df4cc0eb86aab23719ded1b5))
- close APKINDEX archive file ([#6672](https://togithub.com/aquasecurity/trivy/issues/6672)) ([5caf437](https://togithub.com/aquasecurity/trivy/commit/5caf4377f3a7fcb1f6e1a84c67136ae62d100be3))
- close settings.xml ([#6768](https://togithub.com/aquasecurity/trivy/issues/6768)) ([9c3e895](https://togithub.com/aquasecurity/trivy/commit/9c3e895fcb0852c00ac03ed21338768f76b5273b))
- close testfile ([#6830](https://togithub.com/aquasecurity/trivy/issues/6830)) ([aa0c413](https://togithub.com/aquasecurity/trivy/commit/aa0c413814e8915b38d2285c6a8ba5bc3f0705b4))
- **conda:** add support `pip` deps for `environment.yml` files ([#6675](https://togithub.com/aquasecurity/trivy/issues/6675)) ([150a773](https://togithub.com/aquasecurity/trivy/commit/150a77313e980cd63797a89a03afcbc97b285f38))
- **go:** add only non-empty root modules for `gobinaries` ([#6710](https://togithub.com/aquasecurity/trivy/issues/6710)) ([c96f2a5](https://togithub.com/aquasecurity/trivy/commit/c96f2a5b3de820da37e14594dd537c3b0949ae9c))
- **go:** include only `.version`|`.ver` (no prefixes) ldflags for `gobinaries` ([#6705](https://togithub.com/aquasecurity/trivy/issues/6705)) ([afb4f9d](https://togithub.com/aquasecurity/trivy/commit/afb4f9dc4730671ba004e1734fa66422c4c86dad))
- Golang version parsing from binaries w/GOEXPERIMENT ([#6696](https://togithub.com/aquasecurity/trivy/issues/6696)) ([696f2ae](https://togithub.com/aquasecurity/trivy/commit/696f2ae0ecdd4f90303f41249924a09ace70dd78))
- include packages unless it is not needed ([#6765](https://togithub.com/aquasecurity/trivy/issues/6765)) ([56dbe1f](https://togithub.com/aquasecurity/trivy/commit/56dbe1f6768fe67fbc1153b74fde0f83eaa1b281))
- **misconf:** don't shift ignore rule related to code ([#6708](https://togithub.com/aquasecurity/trivy/issues/6708)) ([39a746c](https://togithub.com/aquasecurity/trivy/commit/39a746c77837f873e87b81be40676818030f44c5))
- **misconf:** skip Rego errors with a nil location ([#6638](https://togithub.com/aquasecurity/trivy/issues/6638)) ([a2c522d](https://togithub.com/aquasecurity/trivy/commit/a2c522ddb229f049999c4ce74ef75a0e0f9fdc62))
- **misconf:** skip Rego errors with a nil location ([#6666](https://togithub.com/aquasecurity/trivy/issues/6666)) ([a126e10](https://togithub.com/aquasecurity/trivy/commit/a126e1075a44ef0e40c0dc1e214d1c5955f80242))
- node-collector high and critical cves ([#6707](https://togithub.com/aquasecurity/trivy/issues/6707)) ([ff32deb](https://togithub.com/aquasecurity/trivy/commit/ff32deb7bf9163c06963f557228260b3b8c161ed))
- **plugin:** initialize logger ([#6836](https://togithub.com/aquasecurity/trivy/issues/6836)) ([728e77a](https://togithub.com/aquasecurity/trivy/commit/728e77a7261dc3fcda1e61e79be066c789bbba0c))
- **python:** add package name and version validation for `requirements.txt` files. ([#6804](https://togithub.com/aquasecurity/trivy/issues/6804)) ([ea3a124](https://togithub.com/aquasecurity/trivy/commit/ea3a124fc7162c30c7f1a59bdb28db0b3c8bb86d))
- **report:** hide empty tables if all vulns has been filtered ([#6352](https://togithub.com/aquasecurity/trivy/issues/6352)) ([3d388d8](https://togithub.com/aquasecurity/trivy/commit/3d388d8552ef42d4d54176309a38c1879008527b))
- **sbom:** fix panic for `convert` mode when scanning json file derived from sbom file ([#6808](https://togithub.com/aquasecurity/trivy/issues/6808)) ([f92ea09](https://togithub.com/aquasecurity/trivy/commit/f92ea096856c7c262b05bd4d31c62689ebafac82))
- use of specified context to obtain cluster name ([#6645](https://togithub.com/aquasecurity/trivy/issues/6645)) ([39ebed4](https://togithub.com/aquasecurity/trivy/commit/39ebed45f8c218509d264bd3f3ca548fc33d2b3a))
##### Performance Improvements
- **misconf:** parse rego input once ([#6615](https://togithub.com/aquasecurity/trivy/issues/6615)) ([67c6b1d](https://togithub.com/aquasecurity/trivy/commit/67c6b1d473999003d682bdb42657bbf3a4a69a9c))
### [`v0.51.4`](https://togithub.com/aquasecurity/trivy/releases/tag/v0.51.4)
#### Changelog
- [`c06f467`](https://togithub.com/aquasecurity/trivy/commit/c06f467e6) chore: downgrade trivy-checks and trivy-aws
- [`df4f760`](https://togithub.com/aquasecurity/trivy/commit/df4f7604a) build: use main package instead of main.go ([#6766](https://togithub.com/aquasecurity/trivy/issues/6766))
- [`bf7a8ed`](https://togithub.com/aquasecurity/trivy/commit/bf7a8ede3) chore(deps): bump the common group across 1 directory with 29 updates ([#6756](https://togithub.com/aquasecurity/trivy/issues/6756))
- [`acb22c6`](https://togithub.com/aquasecurity/trivy/commit/acb22c60a) chore(deps): bump the aws group with 8 updates ([#6738](https://togithub.com/aquasecurity/trivy/issues/6738))
- [`9a3510f`](https://togithub.com/aquasecurity/trivy/commit/9a3510ffd) chore(deps): bump the docker group with 2 updates ([#6739](https://togithub.com/aquasecurity/trivy/issues/6739))
- [`7806b37`](https://togithub.com/aquasecurity/trivy/commit/7806b37e2) ci: add `generic` dir to deb deploy script ([#6636](https://togithub.com/aquasecurity/trivy/issues/6636))
### [`v0.51.2`](https://togithub.com/aquasecurity/trivy/releases/tag/v0.51.2)
[Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.51.1...v0.51.2)
#### Changelog
- [`eadc6fb`](https://togithub.com/aquasecurity/trivy/commit/eadc6fb64) fix: node-collector high and critical cves ([#6707](https://togithub.com/aquasecurity/trivy/issues/6707))
- [`cc489b1`](https://togithub.com/aquasecurity/trivy/commit/cc489b1af) Merge pull request from GHSA-xcq4-m2r3-cmrj
- [`013f71a`](https://togithub.com/aquasecurity/trivy/commit/013f71a6a) chore: auto-bump golang patch versions ([#6711](https://togithub.com/aquasecurity/trivy/issues/6711))
- [`113a5b2`](https://togithub.com/aquasecurity/trivy/commit/113a5b216) fix(misconf): don't shift ignore rule related to code ([#6708](https://togithub.com/aquasecurity/trivy/issues/6708))
- [`733e5ac`](https://togithub.com/aquasecurity/trivy/commit/733e5ac1f) fix(go): include only `.version`|`.ver` (no prefixes) ldflags for `gobinaries` ([#6705](https://togithub.com/aquasecurity/trivy/issues/6705))
- [`d311e49`](https://togithub.com/aquasecurity/trivy/commit/d311e49bc) fix(go): add only non-empty root modules for `gobinaries` ([#6710](https://togithub.com/aquasecurity/trivy/issues/6710))
- [`cf1a7bf`](https://togithub.com/aquasecurity/trivy/commit/cf1a7bf30) refactor: unify package addition and vulnerability scanning ([#6579](https://togithub.com/aquasecurity/trivy/issues/6579))
- [`d465d9d`](https://togithub.com/aquasecurity/trivy/commit/d465d9d1e) fix: Golang version parsing from binaries w/GOEXPERIMENT ([#6696](https://togithub.com/aquasecurity/trivy/issues/6696))
- [`0af225c`](https://togithub.com/aquasecurity/trivy/commit/0af225ccf) fix(conda): add support `pip` deps for `environment.yml` files ([#6675](https://togithub.com/aquasecurity/trivy/issues/6675))
- [`6f64d55`](https://togithub.com/aquasecurity/trivy/commit/6f64d5518) fix(misconf): skip Rego errors with a nil location ([#6666](https://togithub.com/aquasecurity/trivy/issues/6666))
- [`8c27430`](https://togithub.com/aquasecurity/trivy/commit/8c27430a2) fix(misconf): skip Rego errors with a nil location ([#6638](https://togithub.com/aquasecurity/trivy/issues/6638))
- [`c2b46d3`](https://togithub.com/aquasecurity/trivy/commit/c2b46d3c2) refactor: unify Library and Package structs ([#6633](https://togithub.com/aquasecurity/trivy/issues/6633))
- [`4368f11`](https://togithub.com/aquasecurity/trivy/commit/4368f11e0) fix: use of specified context to obtain cluster name ([#6645](https://togithub.com/aquasecurity/trivy/issues/6645))
- [`5ec62f8`](https://togithub.com/aquasecurity/trivy/commit/5ec62f863) docs: fix usage of image-config-scanners ([#6635](https://togithub.com/aquasecurity/trivy/issues/6635))
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
This PR contains the following updates:
0.51.1->0.53.0Release Notes
aquasecurity/trivy (ghcr.io/aquasecurity/trivy)
### [`v0.53.0`](https://togithub.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0530-2024-07-01) [Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.52.2...v0.53.0) ##### ⚠ BREAKING CHANGES - **k8s:** node-collector dynamic commands support ([#6861](https://togithub.com/aquasecurity/trivy/issues/6861)) - add clean subcommand ([#6993](https://togithub.com/aquasecurity/trivy/issues/6993)) - **aws:** Remove aws subcommand ([#6995](https://togithub.com/aquasecurity/trivy/issues/6995)) ##### Features - add clean subcommand ([#6993](https://togithub.com/aquasecurity/trivy/issues/6993)) ([8d0ae1f](https://togithub.com/aquasecurity/trivy/commit/8d0ae1f5de72d92a043dcd6b7c164d30e51b6047)) - Add local ImageID to SARIF metadata ([#6522](https://togithub.com/aquasecurity/trivy/issues/6522)) ([f144e91](https://togithub.com/aquasecurity/trivy/commit/f144e912d34234f00b5a13b7a11a0019fa978b27)) - add memory cache backend ([#7048](https://togithub.com/aquasecurity/trivy/issues/7048)) ([55ccd06](https://togithub.com/aquasecurity/trivy/commit/55ccd06df43f6ff28685f46d215ccb70f55916d2)) - **aws:** Remove aws subcommand ([#6995](https://togithub.com/aquasecurity/trivy/issues/6995)) ([979e118](https://togithub.com/aquasecurity/trivy/commit/979e118a9e0ca8943bef9143f492d7eb1fd4d863)) - **conda:** add licenses support for `environment.yml` files ([#6953](https://togithub.com/aquasecurity/trivy/issues/6953)) ([654217a](https://togithub.com/aquasecurity/trivy/commit/654217a65485ca0a07771ea61071977894eb4920)) - **dart:** use first version of constraint for dependencies using SDK version ([#6239](https://togithub.com/aquasecurity/trivy/issues/6239)) ([042d6b0](https://togithub.com/aquasecurity/trivy/commit/042d6b08c283105c258a3dda98983b345a5305c3)) - **image:** Set User-Agent header for Trivy container registry requests ([#6868](https://togithub.com/aquasecurity/trivy/issues/6868)) ([9b31697](https://togithub.com/aquasecurity/trivy/commit/9b31697274c8743d6e5a8f7a1a05daf60cd15910)) - **java:** add support for `maven-metadata.xml` files for remote snapshot repositories. ([#6950](https://togithub.com/aquasecurity/trivy/issues/6950)) ([1f8fca1](https://togithub.com/aquasecurity/trivy/commit/1f8fca1fc77b989bb4e3ba820b297464dbdd825f)) - **java:** add support for sbt projects using sbt-dependency-lock ([#6882](https://togithub.com/aquasecurity/trivy/issues/6882)) ([f18d035](https://togithub.com/aquasecurity/trivy/commit/f18d035ae13b281c96aa4ed69ca32e507d336e66)) - **k8s:** node-collector dynamic commands support ([#6861](https://togithub.com/aquasecurity/trivy/issues/6861)) ([8d618e4](https://togithub.com/aquasecurity/trivy/commit/8d618e48a2f1b60c2e4c49cdd9deb8eb45c972b0)) - **misconf:** add metadata to Cloud schema ([#6831](https://togithub.com/aquasecurity/trivy/issues/6831)) ([02d5404](https://togithub.com/aquasecurity/trivy/commit/02d540478d495416b50d7e8b187ff9f5bba41f45)) - **misconf:** add support for AWS::EC2::SecurityGroupIngress/Egress ([#6755](https://togithub.com/aquasecurity/trivy/issues/6755)) ([55fa610](https://togithub.com/aquasecurity/trivy/commit/55fa6109cd0463fd3221aae41ca7b1d8c44ad430)) - **misconf:** API Gateway V1 support for CloudFormation ([#6874](https://togithub.com/aquasecurity/trivy/issues/6874)) ([8491469](https://togithub.com/aquasecurity/trivy/commit/8491469f0b35bd9df706a433669f5b62239d4ef3)) - **misconf:** support of selectors for all providers for Rego ([#6905](https://togithub.com/aquasecurity/trivy/issues/6905)) ([bc3741a](https://togithub.com/aquasecurity/trivy/commit/bc3741ae2c68cdd00fc0aef7e51985568b2eb78a)) - **php:** add installed.json file support ([#4865](https://togithub.com/aquasecurity/trivy/issues/4865)) ([edc556b](https://togithub.com/aquasecurity/trivy/commit/edc556b85e3554c31e19b1ece189effb9ba2be12)) - **plugin:** add support for nested archives ([#6845](https://togithub.com/aquasecurity/trivy/issues/6845)) ([622c67b](https://togithub.com/aquasecurity/trivy/commit/622c67b7647f94d0a0ca3acf711d8f847cdd8d98)) - **sbom:** migrate to `CycloneDX v1.6` ([#6903](https://togithub.com/aquasecurity/trivy/issues/6903)) ([09e50ce](https://togithub.com/aquasecurity/trivy/commit/09e50ce6a82073ba62f1732d5aa0cd2701578693)) ##### Bug Fixes - **c:** don't skip conan files from `file-patterns` and scan `.conan2` cache dir ([#6949](https://togithub.com/aquasecurity/trivy/issues/6949)) ([38b35dd](https://togithub.com/aquasecurity/trivy/commit/38b35dd3c804027e7a6e6a9d3c87b7ac333896c5)) - **cli:** show info message only when --scanners is available ([#7032](https://togithub.com/aquasecurity/trivy/issues/7032)) ([e9fc3e3](https://togithub.com/aquasecurity/trivy/commit/e9fc3e3397564512038ddeca2adce0efcb3f93c5)) - **cyclonedx:** trim non-URL info for `advisory.url` ([#6952](https://togithub.com/aquasecurity/trivy/issues/6952)) ([417212e](https://togithub.com/aquasecurity/trivy/commit/417212e0930aa52a27ebdc1b9370d2943ce0f8fa)) - **debian:** take installed files from the origin layer ([#6849](https://togithub.com/aquasecurity/trivy/issues/6849)) ([089b953](https://togithub.com/aquasecurity/trivy/commit/089b953462260f01c40bdf588b2568ae0ef658bc)) - **image:** parse `image.inspect.Created` field only for non-empty values ([#6948](https://togithub.com/aquasecurity/trivy/issues/6948)) ([0af5730](https://togithub.com/aquasecurity/trivy/commit/0af5730cbe56686417389c2fad643c1bdbb33999)) - **license:** return license separation using separators `,`, `or`, etc. ([#6916](https://togithub.com/aquasecurity/trivy/issues/6916)) ([52f7aa5](https://togithub.com/aquasecurity/trivy/commit/52f7aa54b520a90a19736703f8ea63cc20fab104)) - **misconf:** fix caching of modules in subdirectories ([#6814](https://togithub.com/aquasecurity/trivy/issues/6814)) ([0bcfedb](https://togithub.com/aquasecurity/trivy/commit/0bcfedbcaa9bbe30ee5ecade5b98e9ce3cc54c9b)) - **misconf:** fix parsing of engine links and frameworks ([#6937](https://togithub.com/aquasecurity/trivy/issues/6937)) ([ec68c9a](https://togithub.com/aquasecurity/trivy/commit/ec68c9ab4580d057720179173d58734402c92af4)) - **misconf:** handle source prefix to ignore ([#6945](https://togithub.com/aquasecurity/trivy/issues/6945)) ([c3192f0](https://togithub.com/aquasecurity/trivy/commit/c3192f061d7e84eaf38df8df7c879dc00b4ca137)) - **misconf:** parsing numbers without fraction as int ([#6834](https://togithub.com/aquasecurity/trivy/issues/6834)) ([8141a13](https://togithub.com/aquasecurity/trivy/commit/8141a137ba50b553a9da877d95c7ccb491d041c6)) - **nodejs:** fix infinite loop when package link from `package-lock.json` file is broken ([#6858](https://togithub.com/aquasecurity/trivy/issues/6858)) ([cf5aa33](https://togithub.com/aquasecurity/trivy/commit/cf5aa336e660e4c98481ebf8d15dd4e54c38581e)) - **nodejs:** fix infinity loops for `pnpm` with cyclic imports ([#6857](https://togithub.com/aquasecurity/trivy/issues/6857)) ([7d083bc](https://togithub.com/aquasecurity/trivy/commit/7d083bc890eccc3bf32765c6d7e922cab2e2ef94)) - **plugin:** respect `--insecure` ([#7022](https://togithub.com/aquasecurity/trivy/issues/7022)) ([3d02a31](https://togithub.com/aquasecurity/trivy/commit/3d02a31b44924f9e2495aae087f7ca9de3314db4)) - **purl:** add missed os types ([#6955](https://togithub.com/aquasecurity/trivy/issues/6955)) ([2d85a00](https://togithub.com/aquasecurity/trivy/commit/2d85a003b22298d1101f84559f7c6b470f2b3909)) - **python:** compare pkg names from `poetry.lock` and `pyproject.toml` in lowercase ([#6852](https://togithub.com/aquasecurity/trivy/issues/6852)) ([faa9d92](https://togithub.com/aquasecurity/trivy/commit/faa9d92cfeb8d924deda2dac583b6c97099c08d9)) - **sbom:** don't overwrite `srcEpoch` when decoding SBOM files ([#6866](https://togithub.com/aquasecurity/trivy/issues/6866)) ([04af59c](https://togithub.com/aquasecurity/trivy/commit/04af59c2906bcfc7f7970b4e8f45a90f04313170)) - **sbom:** fix panic when scanning SBOM file without root component into SBOM format ([#7051](https://togithub.com/aquasecurity/trivy/issues/7051)) ([3d4ae8b](https://togithub.com/aquasecurity/trivy/commit/3d4ae8b5be94cd9b00badeece8d86c2258b2cd90)) - **sbom:** take pkg name from `purl` for maven pkgs ([#7008](https://togithub.com/aquasecurity/trivy/issues/7008)) ([a76e328](https://togithub.com/aquasecurity/trivy/commit/a76e3286c413de3dec55394fb41dd627dfee37ae)) - **sbom:** use `purl` for `bitnami` pkg names ([#6982](https://togithub.com/aquasecurity/trivy/issues/6982)) ([7eabb92](https://togithub.com/aquasecurity/trivy/commit/7eabb92ec2e617300433445718be07ac74956454)) - **sbom:** use package UIDs for uniqueness ([#7042](https://togithub.com/aquasecurity/trivy/issues/7042)) ([14d71ba](https://togithub.com/aquasecurity/trivy/commit/14d71ba63c39e51dd4179ba2d6002b46e1816e90)) - **secret:** `Asymmetric Private Key` shouldn't start with space ([#6867](https://togithub.com/aquasecurity/trivy/issues/6867)) ([bb26445](https://togithub.com/aquasecurity/trivy/commit/bb26445e3df198df77930329f532ac5ab7a67af2)) - **suse:** Add SLES 15.6 and Leap 15.6 ([#6964](https://togithub.com/aquasecurity/trivy/issues/6964)) ([5ee4e9d](https://togithub.com/aquasecurity/trivy/commit/5ee4e9d30ea814f60fd5705361cabf2e83a47a78)) - use embedded when command path not found ([#7037](https://togithub.com/aquasecurity/trivy/issues/7037)) ([137c916](https://togithub.com/aquasecurity/trivy/commit/137c9164238ffd989a0c5ed24f23a55bbf341f6e)) ### [`v0.52.2`](https://togithub.com/aquasecurity/trivy/releases/tag/v0.52.2) [Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.52.1...v0.52.2) #### Changelog - [`8709d4f`](https://togithub.com/aquasecurity/trivy/commit/8709d4f9c) release: v0.52.2 \[release/v0.52] ([#6896](https://togithub.com/aquasecurity/trivy/issues/6896)) - [`a4b8ad7`](https://togithub.com/aquasecurity/trivy/commit/a4b8ad767) ci: use `ubuntu-latest-m` runner \[backport: release/v0.52] ([#6933](https://togithub.com/aquasecurity/trivy/issues/6933)) - [`2b711bc`](https://togithub.com/aquasecurity/trivy/commit/2b711bc26) chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 \[backport: release/v0.52] ([#6919](https://togithub.com/aquasecurity/trivy/issues/6919)) - [`191d31e`](https://togithub.com/aquasecurity/trivy/commit/191d31ef8) test: bump docker API to 1.45 \[backport: release/v0.52] ([#6922](https://togithub.com/aquasecurity/trivy/issues/6922)) - [`3f5874c`](https://togithub.com/aquasecurity/trivy/commit/3f5874c8a) ci: bump `github.com/goreleaser/goreleaser` to `v2.0.0` \[backport: release/v0.52] ([#6893](https://togithub.com/aquasecurity/trivy/issues/6893)) - [`8f8c76a`](https://togithub.com/aquasecurity/trivy/commit/8f8c76a2a) fix(debian): take installed files from the origin layer \[backport: release/v0.52] ([#6892](https://togithub.com/aquasecurity/trivy/issues/6892)) ### [`v0.52.1`](https://togithub.com/aquasecurity/trivy/releases/tag/v0.52.1) [Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.52.0...v0.52.1) #### Changelog - [`a3caf06`](https://togithub.com/aquasecurity/trivy/commit/a3caf0658) release: v0.52.1 \[release/v0.52] ([#6877](https://togithub.com/aquasecurity/trivy/issues/6877)) - [`01dbb42`](https://togithub.com/aquasecurity/trivy/commit/01dbb42ae) fix(nodejs): fix infinite loop when package link from `package-lock.json` file is broken \[backport: release/v0.52] ([#6888](https://togithub.com/aquasecurity/trivy/issues/6888)) - [`f186d22`](https://togithub.com/aquasecurity/trivy/commit/f186d22bf) fix(sbom): don't overwrite `srcEpoch` when decoding SBOM files \[backport: release/v0.52] ([#6881](https://togithub.com/aquasecurity/trivy/issues/6881)) - [`093c0ae`](https://togithub.com/aquasecurity/trivy/commit/093c0ae02) fix(python): compare pkg names from `poetry.lock` and `pyproject.toml` in lowercase \[backport: release/v0.52] ([#6878](https://togithub.com/aquasecurity/trivy/issues/6878)) - [`6bfda76`](https://togithub.com/aquasecurity/trivy/commit/6bfda7602) Merge pull request [#6879](https://togithub.com/aquasecurity/trivy/issues/6879) from aquasecurity/backport-pr-6864-to-release/v0.52 - [`53850c8`](https://togithub.com/aquasecurity/trivy/commit/53850c8b2) docs: explain how VEX is applied ([#6864](https://togithub.com/aquasecurity/trivy/issues/6864)) - [`2211962`](https://togithub.com/aquasecurity/trivy/commit/221196202) Merge pull request [#6875](https://togithub.com/aquasecurity/trivy/issues/6875) from aquasecurity/backport-pr-6857-to-release/v0.52 - [`a614b69`](https://togithub.com/aquasecurity/trivy/commit/a614b693d) fix(nodejs): fix infinity loops for `pnpm` with cyclic imports ([#6857](https://togithub.com/aquasecurity/trivy/issues/6857)) ### [`v0.52.0`](https://togithub.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0520-2024-06-03) [Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.51.4...v0.52.0) ##### Features - Add Julia language analyzer support ([#5635](https://togithub.com/aquasecurity/trivy/issues/5635)) ([fecafb1](https://togithub.com/aquasecurity/trivy/commit/fecafb1fc5bb129c7485342a0775f0dd8bedd28e)) - add support for plugin index ([#6674](https://togithub.com/aquasecurity/trivy/issues/6674)) ([26faf8f](https://togithub.com/aquasecurity/trivy/commit/26faf8f3f04b1c5f9f81c03ffc6b2008732207e2)) - **misconf:** Add support for deprecating a check ([#6664](https://togithub.com/aquasecurity/trivy/issues/6664)) ([88702cf](https://togithub.com/aquasecurity/trivy/commit/88702cfd5918b093defc5b5580f7cbf16f5f2417)) - **misconf:** add Terraform 'removed' block to schema ([#6640](https://togithub.com/aquasecurity/trivy/issues/6640)) ([b7a0a13](https://togithub.com/aquasecurity/trivy/commit/b7a0a131a03ed49c08d3b0d481bc9284934fd6e1)) - **misconf:** register builtin Rego funcs from trivy-checks ([#6616](https://togithub.com/aquasecurity/trivy/issues/6616)) ([7c22ee3](https://togithub.com/aquasecurity/trivy/commit/7c22ee3df5ee51beb90e44428a99541b3d19ab98)) - **misconf:** resolve tf module from OpenTofu compatible registry ([#6743](https://togithub.com/aquasecurity/trivy/issues/6743)) ([ac74520](https://togithub.com/aquasecurity/trivy/commit/ac7452009bf7ca0fa8ee1de8807c792eabad405a)) - **misconf:** support for VPC resources for inbound/outbound rules ([#6779](https://togithub.com/aquasecurity/trivy/issues/6779)) ([349caf9](https://togithub.com/aquasecurity/trivy/commit/349caf96bc3dd81551d488044f1adfdb947f39fb)) - **misconf:** support symlinks inside of Helm archives ([#6621](https://togithub.com/aquasecurity/trivy/issues/6621)) ([4eae37c](https://togithub.com/aquasecurity/trivy/commit/4eae37c52b035b3576361c12f70d3d9517d0a73c)) - **nodejs:** add v9 pnpm lock file support ([#6617](https://togithub.com/aquasecurity/trivy/issues/6617)) ([1e08648](https://togithub.com/aquasecurity/trivy/commit/1e0864842e32a709941d4b4e8f521602bcee684d)) - **plugin:** specify plugin version ([#6683](https://togithub.com/aquasecurity/trivy/issues/6683)) ([d6dc567](https://togithub.com/aquasecurity/trivy/commit/d6dc56732babbc9d7f788c280a768d8648aa093d)) - **python:** add license support for `requirement.txt` files ([#6782](https://togithub.com/aquasecurity/trivy/issues/6782)) ([29615be](https://togithub.com/aquasecurity/trivy/commit/29615be85e8bfeaf5a0cd51829b1898c55fa4274)) - **python:** add line number support for `requirement.txt` files ([#6729](https://togithub.com/aquasecurity/trivy/issues/6729)) ([2bc54ad](https://togithub.com/aquasecurity/trivy/commit/2bc54ad2752aba5de4380cb92c13b09c0abefd73)) - **report:** Include licenses and secrets filtered by rego to ModifiedFindings ([#6483](https://togithub.com/aquasecurity/trivy/issues/6483)) ([fa3cf99](https://togithub.com/aquasecurity/trivy/commit/fa3cf993eace4be793f85907b42365269c597b91)) - **vex:** improve relationship support in CSAF VEX ([#6735](https://togithub.com/aquasecurity/trivy/issues/6735)) ([a447f6b](https://togithub.com/aquasecurity/trivy/commit/a447f6ba94b6f8b14177dc5e4369a788e2020d90)) - **vex:** support non-root components for products in OpenVEX ([#6728](https://togithub.com/aquasecurity/trivy/issues/6728)) ([9515695](https://togithub.com/aquasecurity/trivy/commit/9515695d45e9b5c20890e27e21e3ab45bfd4ce5f)) ##### Bug Fixes - clean up golangci lint configuration ([#6797](https://togithub.com/aquasecurity/trivy/issues/6797)) ([62de6f3](https://togithub.com/aquasecurity/trivy/commit/62de6f3feba6e4c56ad3922441d5b0f150c3d6b7)) - **cli:** always output fatal errors to stderr ([#6827](https://togithub.com/aquasecurity/trivy/issues/6827)) ([c2b9132](https://togithub.com/aquasecurity/trivy/commit/c2b9132a7e933a68df4cc0eb86aab23719ded1b5)) - close APKINDEX archive file ([#6672](https://togithub.com/aquasecurity/trivy/issues/6672)) ([5caf437](https://togithub.com/aquasecurity/trivy/commit/5caf4377f3a7fcb1f6e1a84c67136ae62d100be3)) - close settings.xml ([#6768](https://togithub.com/aquasecurity/trivy/issues/6768)) ([9c3e895](https://togithub.com/aquasecurity/trivy/commit/9c3e895fcb0852c00ac03ed21338768f76b5273b)) - close testfile ([#6830](https://togithub.com/aquasecurity/trivy/issues/6830)) ([aa0c413](https://togithub.com/aquasecurity/trivy/commit/aa0c413814e8915b38d2285c6a8ba5bc3f0705b4)) - **conda:** add support `pip` deps for `environment.yml` files ([#6675](https://togithub.com/aquasecurity/trivy/issues/6675)) ([150a773](https://togithub.com/aquasecurity/trivy/commit/150a77313e980cd63797a89a03afcbc97b285f38)) - **go:** add only non-empty root modules for `gobinaries` ([#6710](https://togithub.com/aquasecurity/trivy/issues/6710)) ([c96f2a5](https://togithub.com/aquasecurity/trivy/commit/c96f2a5b3de820da37e14594dd537c3b0949ae9c)) - **go:** include only `.version`|`.ver` (no prefixes) ldflags for `gobinaries` ([#6705](https://togithub.com/aquasecurity/trivy/issues/6705)) ([afb4f9d](https://togithub.com/aquasecurity/trivy/commit/afb4f9dc4730671ba004e1734fa66422c4c86dad)) - Golang version parsing from binaries w/GOEXPERIMENT ([#6696](https://togithub.com/aquasecurity/trivy/issues/6696)) ([696f2ae](https://togithub.com/aquasecurity/trivy/commit/696f2ae0ecdd4f90303f41249924a09ace70dd78)) - include packages unless it is not needed ([#6765](https://togithub.com/aquasecurity/trivy/issues/6765)) ([56dbe1f](https://togithub.com/aquasecurity/trivy/commit/56dbe1f6768fe67fbc1153b74fde0f83eaa1b281)) - **misconf:** don't shift ignore rule related to code ([#6708](https://togithub.com/aquasecurity/trivy/issues/6708)) ([39a746c](https://togithub.com/aquasecurity/trivy/commit/39a746c77837f873e87b81be40676818030f44c5)) - **misconf:** skip Rego errors with a nil location ([#6638](https://togithub.com/aquasecurity/trivy/issues/6638)) ([a2c522d](https://togithub.com/aquasecurity/trivy/commit/a2c522ddb229f049999c4ce74ef75a0e0f9fdc62)) - **misconf:** skip Rego errors with a nil location ([#6666](https://togithub.com/aquasecurity/trivy/issues/6666)) ([a126e10](https://togithub.com/aquasecurity/trivy/commit/a126e1075a44ef0e40c0dc1e214d1c5955f80242)) - node-collector high and critical cves ([#6707](https://togithub.com/aquasecurity/trivy/issues/6707)) ([ff32deb](https://togithub.com/aquasecurity/trivy/commit/ff32deb7bf9163c06963f557228260b3b8c161ed)) - **plugin:** initialize logger ([#6836](https://togithub.com/aquasecurity/trivy/issues/6836)) ([728e77a](https://togithub.com/aquasecurity/trivy/commit/728e77a7261dc3fcda1e61e79be066c789bbba0c)) - **python:** add package name and version validation for `requirements.txt` files. ([#6804](https://togithub.com/aquasecurity/trivy/issues/6804)) ([ea3a124](https://togithub.com/aquasecurity/trivy/commit/ea3a124fc7162c30c7f1a59bdb28db0b3c8bb86d)) - **report:** hide empty tables if all vulns has been filtered ([#6352](https://togithub.com/aquasecurity/trivy/issues/6352)) ([3d388d8](https://togithub.com/aquasecurity/trivy/commit/3d388d8552ef42d4d54176309a38c1879008527b)) - **sbom:** fix panic for `convert` mode when scanning json file derived from sbom file ([#6808](https://togithub.com/aquasecurity/trivy/issues/6808)) ([f92ea09](https://togithub.com/aquasecurity/trivy/commit/f92ea096856c7c262b05bd4d31c62689ebafac82)) - use of specified context to obtain cluster name ([#6645](https://togithub.com/aquasecurity/trivy/issues/6645)) ([39ebed4](https://togithub.com/aquasecurity/trivy/commit/39ebed45f8c218509d264bd3f3ca548fc33d2b3a)) ##### Performance Improvements - **misconf:** parse rego input once ([#6615](https://togithub.com/aquasecurity/trivy/issues/6615)) ([67c6b1d](https://togithub.com/aquasecurity/trivy/commit/67c6b1d473999003d682bdb42657bbf3a4a69a9c)) ### [`v0.51.4`](https://togithub.com/aquasecurity/trivy/releases/tag/v0.51.4) #### Changelog - [`c06f467`](https://togithub.com/aquasecurity/trivy/commit/c06f467e6) chore: downgrade trivy-checks and trivy-aws - [`df4f760`](https://togithub.com/aquasecurity/trivy/commit/df4f7604a) build: use main package instead of main.go ([#6766](https://togithub.com/aquasecurity/trivy/issues/6766)) - [`bf7a8ed`](https://togithub.com/aquasecurity/trivy/commit/bf7a8ede3) chore(deps): bump the common group across 1 directory with 29 updates ([#6756](https://togithub.com/aquasecurity/trivy/issues/6756)) - [`acb22c6`](https://togithub.com/aquasecurity/trivy/commit/acb22c60a) chore(deps): bump the aws group with 8 updates ([#6738](https://togithub.com/aquasecurity/trivy/issues/6738)) - [`9a3510f`](https://togithub.com/aquasecurity/trivy/commit/9a3510ffd) chore(deps): bump the docker group with 2 updates ([#6739](https://togithub.com/aquasecurity/trivy/issues/6739)) - [`7806b37`](https://togithub.com/aquasecurity/trivy/commit/7806b37e2) ci: add `generic` dir to deb deploy script ([#6636](https://togithub.com/aquasecurity/trivy/issues/6636)) ### [`v0.51.2`](https://togithub.com/aquasecurity/trivy/releases/tag/v0.51.2) [Compare Source](https://togithub.com/aquasecurity/trivy/compare/v0.51.1...v0.51.2) #### Changelog - [`eadc6fb`](https://togithub.com/aquasecurity/trivy/commit/eadc6fb64) fix: node-collector high and critical cves ([#6707](https://togithub.com/aquasecurity/trivy/issues/6707)) - [`cc489b1`](https://togithub.com/aquasecurity/trivy/commit/cc489b1af) Merge pull request from GHSA-xcq4-m2r3-cmrj - [`013f71a`](https://togithub.com/aquasecurity/trivy/commit/013f71a6a) chore: auto-bump golang patch versions ([#6711](https://togithub.com/aquasecurity/trivy/issues/6711)) - [`113a5b2`](https://togithub.com/aquasecurity/trivy/commit/113a5b216) fix(misconf): don't shift ignore rule related to code ([#6708](https://togithub.com/aquasecurity/trivy/issues/6708)) - [`733e5ac`](https://togithub.com/aquasecurity/trivy/commit/733e5ac1f) fix(go): include only `.version`|`.ver` (no prefixes) ldflags for `gobinaries` ([#6705](https://togithub.com/aquasecurity/trivy/issues/6705)) - [`d311e49`](https://togithub.com/aquasecurity/trivy/commit/d311e49bc) fix(go): add only non-empty root modules for `gobinaries` ([#6710](https://togithub.com/aquasecurity/trivy/issues/6710)) - [`cf1a7bf`](https://togithub.com/aquasecurity/trivy/commit/cf1a7bf30) refactor: unify package addition and vulnerability scanning ([#6579](https://togithub.com/aquasecurity/trivy/issues/6579)) - [`d465d9d`](https://togithub.com/aquasecurity/trivy/commit/d465d9d1e) fix: Golang version parsing from binaries w/GOEXPERIMENT ([#6696](https://togithub.com/aquasecurity/trivy/issues/6696)) - [`0af225c`](https://togithub.com/aquasecurity/trivy/commit/0af225ccf) fix(conda): add support `pip` deps for `environment.yml` files ([#6675](https://togithub.com/aquasecurity/trivy/issues/6675)) - [`6f64d55`](https://togithub.com/aquasecurity/trivy/commit/6f64d5518) fix(misconf): skip Rego errors with a nil location ([#6666](https://togithub.com/aquasecurity/trivy/issues/6666)) - [`8c27430`](https://togithub.com/aquasecurity/trivy/commit/8c27430a2) fix(misconf): skip Rego errors with a nil location ([#6638](https://togithub.com/aquasecurity/trivy/issues/6638)) - [`c2b46d3`](https://togithub.com/aquasecurity/trivy/commit/c2b46d3c2) refactor: unify Library and Package structs ([#6633](https://togithub.com/aquasecurity/trivy/issues/6633)) - [`4368f11`](https://togithub.com/aquasecurity/trivy/commit/4368f11e0) fix: use of specified context to obtain cluster name ([#6645](https://togithub.com/aquasecurity/trivy/issues/6645)) - [`5ec62f8`](https://togithub.com/aquasecurity/trivy/commit/5ec62f863) docs: fix usage of image-config-scanners ([#6635](https://togithub.com/aquasecurity/trivy/issues/6635))Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.