gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-05 20:40:16 -08:00
Code Issues Packages Projects Releases Wiki Activity
3,858 Commits 31 Branches 177 Tags
main
Commit Graph

392 Commits

Author SHA1 Message Date
afdesk
5f9b695170 test(k8s): update k8s integrtion test (#9725) 2025-11-24 16:39:22 +00:00
Teppei Fukuda
cbad9ca3a8 feat(report): add fingerprint generation for vulnerabilities (#9794) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2025-11-17 07:23:43 +00:00
Teppei Fukuda
6fb3fde916 feat(report): switch ReportID from UUIDv4 to UUIDv7 (#9749) 2025-11-05 09:42:14 +00:00
Alex Lutz
18c0ee86f3 feat(dotnet): add dependency graph support for .deps.json files (#9726) 
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2025-11-01 05:54:46 +00:00
Teppei Fukuda
d020f2690e feat(report): add image reference to report metadata (#9729) 2025-10-31 07:26:39 +00:00
Teppei Fukuda
758f271040 feat: include registry and repository in artifact ID calculation (#9689) 
Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>
 2025-10-28 09:44:32 +00:00
Teppei Fukuda
a6010c3eda test: improve golden file management in integration tests (#9699) 2025-10-24 07:49:29 +00:00
Teppei Fukuda
a9a3031675 feat(image): add RepoTags support for Docker archives (#9690) 
Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>
 2025-10-22 06:50:13 +00:00
Nikita Pivkin
197c9e1dce feat(misconf): include map key in manifest snippet for diagnostics (#9681) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-10-21 18:24:11 +00:00
Nikita Pivkin
263aee07a3 test: update golden files for TestRepository* integration tests (#9684) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-10-20 19:12:08 +00:00
Teppei Fukuda
fc976bea48 feat: add ReportID field to scan reports (#9670) 
Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>
 2025-10-17 10:31:22 +00:00
Teppei Fukuda
84a7d9a5d6 feat: add ArtifactID field to uniquely identify scan targets (#9663) 
Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>
 2025-10-15 07:04:41 +00:00
afdesk
492797b1c7 test(k8s): use a specific bundle for k8s misconfig scan (#9633) 2025-10-10 10:49:25 +00:00
afdesk
c0c7a6bf1b fix(k8s): disable parallel traversal with fs cache for k8s images (#9534) 2025-09-30 01:44:51 +00:00
Teppei Fukuda
7b663d86ca feat(cli): change --list-all-pkgs default to true (#9510) 2025-09-24 10:06:39 +00:00
Teppei Fukuda
aff03ebab2 feat(cyclonedx): preserve SBOM structure when scanning SBOM files with vulnerability updates (#9439) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2025-09-20 14:26:53 +00:00
DmitriyLewen
1ff9ac7948 fix(vuln): compare nuget package names in lower case (#9456) 2025-09-15 07:21:06 +00:00
Teppei Fukuda
5a5e0972c7 feat(secret): implement streaming secret scanner with byte offset tracking (#9264) 
Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>
 2025-08-01 08:17:54 +00:00
Nikita Pivkin
c4003b2968 test(misconf): move terraform scan tests to integration tests (#9271) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-07-31 06:36:19 +00:00
Teppei Fukuda
f4b2cf10e9 feat(repo): add git repository metadata to reports (#9252) 
Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2025-07-29 11:49:58 +00:00
Stepan
60723e6cfc feat(report): add CVSS vectors in sarif report (#9157) 2025-07-14 09:22:56 +00:00
DmitriyLewen
f224de3e39 fix: migrate from *.list to *.md5sums files for dpkg (#9131) 2025-07-04 08:33:46 +00:00
DmitriyLewen
143da88dd8 fix(sbom): use correct field for licenses in CycloneDX reports (#9057) 2025-07-01 12:28:33 +00:00
K
41d0f949c8 feat(sbom): add manufacturer field to CycloneDX tools metadata (#9019) 
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2025-06-27 07:33:58 +00:00
Teppei Fukuda
cd7c595e4a test: include integration tests in linting and fix all issues (#9060) 2025-06-24 13:09:15 +00:00
Teppei Fukuda
3f41ffa5b8 chore(deps): update Docker to v28.2.2 and fix compatibility issues (#9037) 2025-06-19 07:44:06 +00:00
Nikita Pivkin
7e9a54cd6b fix(misconf): use argument value in WithIncludeDeprecatedChecks (#8942) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-05-29 16:35:33 +00:00
simar7
78e3304bbe chore(deps): Bump trivy-checks (#8934) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-05-29 12:37:47 +00:00
DmitriyLewen
22f040f947 fix(julia): add Relationship field support (#8939) 2025-05-29 11:26:55 +00:00
Teppei Fukuda
104bbc18ea feat(alpine): add maintainer field extraction for APK packages (#8930) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2025-05-29 10:47:33 +00:00
simar7
3b2a3976ac feat(misconf): Add support for Minimum Trivy Version (#8880) 
Signed-off-by: Simar <simar@linux.com>
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-05-28 21:22:21 +00:00
Ashwani Kumar Kamal
7ca656d54b feat(nodejs): add a bun.lock analyzer (#8897) 
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2025-05-28 07:14:54 +00:00
DmitriyLewen
6aff7b0c4f refactor(db): change logic to detect wrong DB (#8864) 2025-05-19 05:01:50 +00:00
Matthieu MOREL
a19e0aa1ba fix: octalLiteral from go-critic (#8811) 
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
 2025-05-05 13:49:07 +00:00
DmitriyLewen
bf4cd4f2d2 feat(nodejs): add root and workspace for yarn packages (#8535) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2025-04-30 14:49:49 +00:00
simar7
573f35c810 chore(deps): Update trivy-checks (#8798) 2025-04-30 06:37:33 +00:00
DmitriyLewen
a95cab0eab feat(image): save layers metadata into report (#8394) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2025-04-23 16:31:43 +00:00
DmitriyLewen
93efe0789e feat(rust): add root and workspace relationships/package for cargo lock files (#8676) 2025-04-14 08:40:39 +00:00
Teppei Fukuda
a0dc3b688e refactor: add hook interface for extended functionality (#8585) 2025-04-08 11:49:16 +00:00
DmitriyLewen
c5e03f7d8f test: use aquasecurity repository for test images (#8677) 2025-04-07 06:32:53 +00:00
simar7
c76764ef5d chore(deps): Bump trivy-checks (#8619) 2025-03-27 07:11:45 +00:00
Teppei Fukuda
c80310d769 refactor: rename scanner to service (#8584) 2025-03-23 23:47:03 +00:00
Teppei Fukuda
529957eac1 feat: replace TinyGo with standard Go for WebAssembly modules (#8496) 2025-03-07 10:10:15 +00:00
Teppei Fukuda
dd54f80d3f feat: add report summary table (#8177) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2025-03-04 09:26:06 +00:00
DmitriyLewen
d464807321 feat: add --vuln-severity-source flag (#8269) 2025-03-03 10:59:30 +00:00
simar7
09cdae6639 chore(deps): Bump trivy-checks to v1.7.1 (#8467) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-03-03 06:03:16 +00:00
Itay Shakury
49456ba841 fix: update all documentation links (#8045) 
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2025-02-26 10:41:46 +00:00
Teppei Fukuda
10b812710b test: replace mock with memory cache and fix non-deterministic tests (#8410) 2025-02-18 05:56:49 +00:00
Nikita Pivkin
73bd20d619 feat(image): return error early if total size of layers exceeds limit (#8294) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2025-01-30 08:01:16 +00:00
simar7
0031a38eb7 chore(deps): Bump trivy-checks (#8310) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-01-30 07:25:43 +00:00