gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-05 20:40:16 -08:00
Code Issues Packages Projects Releases Wiki Activity
3,858 Commits 31 Branches 177 Tags
main
Commit Graph

58 Commits

Author SHA1 Message Date
DmitriyLewen
c7accc85c6 fix: update cosing settings for GoReleaser after bumping cosing to v3 (#9863) 2025-12-03 08:22:41 +00:00
Teppei Fukuda
788f6faffb refactor: migrate from go-json-experiment to encoding/json/v2 (#9422) 
Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>
Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-09-15 08:46:44 +00:00
Owen Rumney
b5da1b8d61 chore: update template URL for brew formula (#9221) 2025-07-24 07:38:39 +00:00
Teppei Fukuda
26a08f5905 chore: drop FreeBSD 32-bit support (#9102) 2025-07-02 06:19:15 +00:00
Itay Shakury
49456ba841 fix: update all documentation links (#8045) 
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2025-02-26 10:41:46 +00:00
DmitriyLewen
1bdc135fe7 ci: bump github.com/goreleaser/goreleaser to v2.0.0 (#6887) 2024-06-10 07:39:02 +00:00
Maksim Nabokikh
9b31697274 feat(image): Set User-Agent header for Trivy container registry requests (#6868) 
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2024-06-10 07:05:03 +00:00
Teppei Fukuda
e3738333b4 build: use main package instead of main.go (#6766) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-05-24 07:54:21 +00:00
Nikita Pivkin
2baad46189 ci: bump GoReleaser from 1.16.2 to 1.20.0 (#5236) 
* chore: replace brews.tap with brews.repository

* ci: bump GoReleaser from 1.16.2 to 1.20.0
 2023-09-25 19:08:53 +00:00
Nikita Pivkin
d442176405 feat(server): add version endpoint (#4869) 
* feat(server): add version endpoint

* fix panic and test

* move version.go

* move version variable

* add docs about endpoints

* move testdata

* refactor

* update build command

* refactor
 2023-08-20 06:12:31 +00:00
DmitriyLewen
4e1316c37f revert 32bit bins (#4977) 2023-08-13 07:32:08 +00:00
afdesk
c29197ab7d ci: update build IDs (#4641) 2023-06-18 11:24:29 +00:00
Teppei Fukuda
9e6411e9f5 ci: matrix build for testing (#4587) 2023-06-12 10:49:13 +03:00
afdesk
9a279fa7bb ci: remove 32bit packages (#4585) 2023-06-08 16:52:37 +03:00
dependabot[bot]
9181bc1f70 chore(deps): bump sigstore/cosign-installer from 2.8.1 to 3.0.1 (#3952) 
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2023-04-24 08:43:07 +03:00
afdesk
ff1c43a791 ci: add gpg signing for RPM packages (#4056) 2023-04-14 07:28:44 +03:00
afdesk
0bebec19f0 ci: bump goreleaser for Github Action from 1.4.1 to 1.16.2 (#3979) 2023-04-12 15:15:16 +03:00
Teppei Fukuda
a2f39a34c5 chore: Revert "ci: add gpg signing for RPM packages (#3612)" (#3946) 
This reverts commit 67572dff6d.
 2023-04-01 08:39:22 +03:00
afdesk
67572dff6d ci: add gpg signing for RPM packages (#3612) 2023-03-24 06:46:18 +03:00
Owen Rumney
5190f9566b feat: Adding support for Windows testing (#3037) 
Signed-off-by: Owen Rumney <owen.rumney@aquasec.com>
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-12-22 22:54:18 +02:00
Juan Antonio Osorio
0f1f2c1b29 build(): Sign releaser artifacts, not only container manifests (#2789) 2022-09-07 16:56:10 +03:00
Rafael Sene
bcc231d3ba ci: add support for ppc64le (#2281) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-06-15 16:51:03 +03:00
Batuhan Apaydın
728a3db6c6 build: sign container image (#1668) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-13 15:35:43 +02:00
Malte Swart
e5bf3d1e30 feat(docker): Label images based on OCI image spec (#1793) 
The Label Schema Convention has been deprecated in favor of the OCI
image spec.

Update the gorelease config to use the new replacement fields.

This is not considered a breaking change, as it only touches metadata
and the Label Schema Convention is deprecated for over two years (March
2019).

Most fields only need to be renamed. `org.label-schema.schema-version`
could be removed without replacement.
`org.opencontainers.image.documentation` was added to link to the
Github page documentation in the exact version.
`org.opencontainers.image.url` was added pointing to the Aqua Security
product page of trivy.
Further labels were considered but not added (unclear purpose or value).
 2022-03-06 20:00:24 +02:00
skuethe
477dc7d5f9 build: add s390x container images (#1726) 
Signed-off-by: skuethe <56306041+skuethe@users.noreply.github.com>
 2022-02-21 11:31:07 +02:00
Teppei Fukuda
6db2092c72 feat(mariner): add support for CBL-Mariner 2.0 (#1694) 2022-02-09 14:45:39 +02:00
Nilushan Costa
392f68926c Replace deprecated option in goreleaser (#1406) 
* Replace deprecated docker.use_buildx with docker.use

* Bump goreleaser GitHub action to v0.183.0
 2021-11-29 05:31:16 +02:00
Raul Cabello Martin
07c9200eb7 chore: add support for s390x arch (#1304) 2021-11-21 11:38:47 +02:00
psibre
798b564ee3 chore: fix issues with Homebrew formula (#1329) 2021-10-25 20:34:32 +03:00
Minchao
6bcb4af10f fix: brew test command (#1253) 2021-09-27 07:25:30 +03:00
AndreyLevchenko
c159501d0d chore(gorelease) change goreleaser config to include template examples (#1138) 
Closes #1123
 2021-07-28 11:05:14 +03:00
Vinod Anandan
803b2f9a93 Generate SBOM (#1076) 
* Generate SBOM

Generate and publish SBOM as part of the release.

* Publish bom.json

* Ignore SBOMs generated during CI
 2021-06-22 09:53:08 +03:00
Teppei Fukuda
d41736b828 chore(ci): create a release discussion (#959) 
* chore(ci): create a release discussion

* chore(ci): bump up goreleaser version
 2021-04-29 19:53:39 +03:00
Drew Robinson
0518d2785f Docker multi-platform image build with buildx, using Goreleaser (#915) 
* Minimal WIP cross platform build with goreleaser

* Add Docker manifest, update docker image tags

* Update GH release workflow

* Comment out ECR image repo and RPM/DEB generation

* Enable and set up Docker Buildx for multi-platform builds

Also add caching of Go modules

* Add Docker Buildx support, re-enable parent repo workflows

* Add Docker Buildx support for multi-arch image builds

* Added Docker Buildx setup into `build-test` job of `test` workflow

Otherwise the `test` workflow will fail.
Also updated `setup-go` GH action to latest version, v2, per request
of @krol3
 2021-03-29 11:53:28 +03:00
Teppei Fukuda
049728665f chore: bump up Go to 1.16 (#861) 
* chore: bump up Go to 1.16

* chore(release): support darwin/arm64
 2021-02-25 19:04:13 +02:00
Teppei Fukuda
47ce996d36 chore(ci): push the official image to public ECR (#855) 2021-02-23 07:35:31 +02:00
Teppei Fukuda
e890ae02c2 chore(ci): migrate CircleCI to GitHub Actions (#850) 2021-02-22 06:56:17 +02:00
Yashvardhan Kukreja
a00d719ed2 shifted: brews.github to brews.tap (#780) 2020-12-21 16:28:19 +02:00
Teppei Fukuda
9bdbeaba66 feat: remove rpm dependency (#753) 
* chore(docker): remove rpm

* chore(README): remove rpm

* fix(scanner): replace rpmcmd with rpm

* chore(goreleaser): remove rpm

* chore(mod): update fanal

* chore(mod): update fanal
 2020-12-02 07:24:43 +02:00
Dax McDonald
d09787e150 Add back support for FreeBSD & OpenBSD (#728) 
Reverts 7fc94ad95c
 2020-10-29 07:21:49 +02:00
Carlos Eduardo
0285a89c7c Add support for ppc64le architecture (#724) 2020-10-26 17:08:14 -07:00
Teppei Fukuda
014be7e143 chore: bump up Go to 1.15 (#646) 
* chore: bump up Go to 1.15

* chore(goreleaser): ignore darwin/386
 2020-09-24 08:00:08 +03:00
Alexander Lauster
b3ff2c35ea Add contrib/ to the release chain for Docker (#638) 
* Add contrib/ to the release chain for Docker

Add the complete contrib/ folder to the release chain

* Include all template files to the tar.gz archives
 2020-09-23 10:49:22 +03:00
Manuel Rüger
901a3715cb goreleaser.yml: Add all templates to archive (#636) 
Fixes: https://github.com/aquasecurity/trivy/issues/631

Signed-off-by: Manuel Rüger <manuel@rueg.eu>
 2020-09-15 16:09:38 -07:00
Teppei Fukuda
1d3f70e07f chore(image): push the official image to GitHub Container Registry as well (#627) 2020-09-08 15:06:32 +03:00
Simarpreet Singh
4d721e1410 SARIF: Tweak format for GitHub UI (#571) 
* sarif: Tweak format for GitHub UI

Signed-off-by: Simarpreet Singh <simar@linux.com>

* sarif: Make sarif easier to use with a default template

This will help us use Trivy in places like GitHub Actions where
we cannot specify a template as input.

$ trivy image --format=sarif alpine:3.10.1

Signed-off-by: Simarpreet Singh <simar@linux.com>

* Revert "sarif: Make sarif easier to use with a default template"

This reverts commit 5b5d1c8f7d.

* .dockerignore: Add un-needed large directories

Signed-off-by: Simarpreet Singh <simar@linux.com>

* Dockerfile: Add sarif template.

This will let users run and save the output through the docker image

Example:
```
docker run --rm -it -v $(pwd):/tmp aquasec/trivy:latest image -f template --template "@contrib/sarif.tpl" --output="/tmp/sarif.test" alpine:3.10.2
```

Signed-off-by: Simarpreet Singh <simar@linux.com>
 2020-07-28 11:22:03 -07:00
Michal Slusarczyk
9a1d7460f6 Adding contrib/junit.tpl to docker image (#554) 2020-07-09 09:23:31 +03:00
Liz Rice
51b8fd8393 Change license to Apache 2.0, continued 2020-03-13 09:49:19 +00:00
Teppei Fukuda
3ed0cfbd5f chore(goreleaser): drop BSD support temporarily (#424) 2020-03-05 17:12:29 +02:00
Davin Kevin
194fbef73c feat(): include GitLab template inside the docker container (#388) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2020-01-26 11:09:07 +02:00