trivy

mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-23 07:29:00 -08:00

Author	SHA1	Message	Date
simar7	01c98d1516	feat(misconf): Support `--ignore-policy` in config scans (#5359 ) Signed-off-by: Simar <simar@linux.com>	2023-10-23 07:32:08 +00:00
Teppei Fukuda	3be5e6b242	chore: enable go-critic (#5302 ) * chore: enable gocritic Signed-off-by: knqyf263 <knqyf263@gmail.com> * refactor: fix lint issues Signed-off-by: knqyf263 <knqyf263@gmail.com> * test: return true for latest versions Signed-off-by: knqyf263 <knqyf263@gmail.com> * chore(lint): enforce map and slice styles Signed-off-by: knqyf263 <knqyf263@gmail.com> --------- Signed-off-by: knqyf263 <knqyf263@gmail.com>	2023-10-02 08:33:21 +00:00
DmitriyLewen	0ccbb4f7fd	chore(cli): disable java-db flags in server mode (#5263 ) * disable java-db flag for server mode * update docs	2023-09-28 07:10:14 +00:00
Teppei Fukuda	44656f2853	refactor: use defined types (#5225 ) * refactor: replace string with defined types Signed-off-by: knqyf263 <knqyf263@gmail.com> * chore: add gci Signed-off-by: knqyf263 <knqyf263@gmail.com> * fix(purl): not confuse trivy type with purl type Signed-off-by: knqyf263 <knqyf263@gmail.com> * test: fix cyclonedx fixture Signed-off-by: knqyf263 <knqyf263@gmail.com> * fix(template): cast TargetType to string Signed-off-by: knqyf263 <knqyf263@gmail.com> * chore: bump TinyGo to v0.29.0 Signed-off-by: knqyf263 <knqyf263@gmail.com> * test: change license to licence Signed-off-by: knqyf263 <knqyf263@gmail.com> * use `analyzer.TypeGoMod` for gomod analyzer * ignore `licence` for misspell linter --------- Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2023-09-22 10:44:39 +00:00
Florian Bufler	9345a98ed1	docs(repo): update trivy repo usage and example (#5049 )	2023-08-28 08:46:39 +00:00
Nikita Pivkin	d442176405	feat(server): add version endpoint (#4869 ) * feat(server): add version endpoint * fix panic and test * move version.go * move version variable * add docs about endpoints * move testdata * refactor * update build command * refactor	2023-08-20 06:12:31 +00:00
simar7	11618c9408	feat(misconf): Support custom URLs for policy bundle (#4834 ) * feat(misconf): Support custom URLs for policy bundle This PR adds support for custom policy bundles to be specified with a flag `--policy-bundle-url` as an option to Trivy. Fixes: https://github.com/aquasecurity/trivy/issues/4672 Signed-off-by: Simar <simar@linux.com> * update docs Signed-off-by: Simar <simar@linux.com> * rename flag to `--policy-bundle-repository` Signed-off-by: Simar <simar@linux.com> * fix field * rebase and update docs Signed-off-by: Simar <simar@linux.com> * set policyBundleRepo on client Signed-off-by: Simar <simar@linux.com> --------- Signed-off-by: Simar <simar@linux.com>	2023-07-26 08:45:49 +00:00
Teppei Fukuda	20c2246a61	fix(report): close the file (#4842 ) * fix(report): close the file * refactor: add the format type * fix: return errors in version printing * fix: lint issues * fix: do not fail on bogus cache dir --------- Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2023-07-23 13:37:18 +00:00
DmitriyLewen	24a3e547d9	feat(nodejs): add support for include-dev-deps flag for yarn (#4812 ) * add support for include-dev-deps flag * remove go.mod replace * refactor * bump go-dep-parser --------- Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-07-23 13:07:49 +00:00
Teppei Fukuda	aca11b95d0	refactor: add allowed values for CLI flags (#4800 ) * refactor: rename Value to Default * refactor: support allowed values for CLI flags * docs: auto-generate * test: fix * test: add tests for flags	2023-07-17 13:13:23 +00:00
DmitriyLewen	22463ababd	feat(cli): add include-dev-deps flag (#4700 ) * add Dev field for Package * fix integration test * update docs * feat(cli): add include-dev flag * bump go-dep-parser * update docs * add integration test * refactor * refactor * fix integration test * refactor: rename flag to include-dev-deps * update docs * update docs * filter dev deps when scanning packages * add flag support for server mode * refactor: remove comment that might confuse * refactor: move --include-dev-deps to the scanner flag group * refactor: not return apps * docs: update --------- Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-06-29 13:15:52 +00:00
chenk	35c4262d0b	feat(k8s): cyclonedx kbom support (#4557 ) * feat: cyclonedx kbom support Signed-off-by: chenk <hen.keinan@gmail.com> * feat: cyclonedx kbom support Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * chore: update sum db Signed-off-by: chenk <hen.keinan@gmail.com> * chore: update sum db Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * chore: update sumdb Signed-off-by: chenk <hen.keinan@gmail.com> * chore: update sumdb Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> --------- Signed-off-by: chenk <hen.keinan@gmail.com>	2023-06-19 10:48:26 +00:00
chenk	ef6538a171	feat: trivy k8s private registry support (#4567 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2023-06-12 05:40:25 +03:00
Teppei Fukuda	48b2e15c23	refactor(cyclonedx): add intermediate representation (#4490 )	2023-06-01 05:50:47 +03:00
Teppei Fukuda	50fe43f14c	feat(cli): convert JSON reports into a different format (#4452 ) Co-authored-by: Aurelien LAJOIE <aurelien.lajoie@kili-technology.com>	2023-05-24 11:45:26 +03:00
Teppei Fukuda	0ef0dadb16	feat: group subcommands (#4449 )	2023-05-23 08:15:39 +03:00
simar7	92f9e98d04	feat(misconf): Add `--reset-policy-bundle` for policy bundle (#4167 )	2023-05-18 11:54:01 +03:00
DmitriyLewen	3b7c9198dd	fix(k8s): add image sources (#4411 )	2023-05-17 07:01:58 +03:00
Adarsh A	0650e0e1d5	feat(license): add new flag for classifier confidence level (#4073 ) Co-authored-by: Aswath S <aswath.s@thoughtworks.com>	2023-04-24 13:41:08 +03:00
chenk	43b6496274	feat: config and fs compliance support (#4097 )	2023-04-24 11:49:19 +03:00
aswath-s-tw	be47b688c7	feat(image): custom docker host option (#3599 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-04-20 22:10:51 +03:00
chenk	f31dea4bd6	feat: auth support oci download server subcommand (#4008 )	2023-04-10 08:26:17 +03:00
Teppei Fukuda	f14bed4532	feat: add auth support for downloading OCI artifacts (#3915 )	2023-03-30 05:53:24 +03:00
Teppei Fukuda	ca0d972cdb	feat(image): add registry options (#3906 )	2023-03-28 07:00:04 +03:00
DmitriyLewen	927acf9579	feat(cli): add javadb metadata to version info (#3835 )	2023-03-19 15:51:14 +02:00
simar7	497c955a4b	feat(misconf): Add support to show policy bundle version (#3743 ) Fixes: https://github.com/aquasecurity/trivy/issues/3696 Signed-off-by: Simar <simar@linux.com>	2023-03-02 17:00:45 +02:00
Teppei Fukuda	bc0836623c	fix(cli): pass integer to exit-on-eol (#3716 )	2023-03-01 12:18:11 +02:00
Itay Shakury	23cdac02ee	feat: add kubernetes pss compliance (#3498 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-03-01 12:10:34 +02:00
Kalyana Krishna Varanasi	302c8ae24c	feat: Adding --module-dir and --enable-modules (#3677 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-03-01 12:09:53 +02:00
chenk	92eaf636ca	feat: config outdated-api result filtered by k8s version (#3578 ) Signed-off-by: chenk <hen.keinan@gmail.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-02-22 15:41:37 +02:00
didiermichel	9be8062c10	feat(cli): add command completion (#3061 ) Co-authored-by: congbang-le <lecongbang314@gmail.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-02-15 13:29:03 +02:00
Jack Lin	32acd293fd	feat(flag): add exit-on-eosl option (#3423 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-02-15 10:51:15 +02:00
DmitriyLewen	7bf1e192ec	feat(java): use trivy-java-db to get GAV (#3484 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-02-01 11:48:05 +02:00
Teppei Fukuda	cb5af0b33b	feat(image): add support for Docker CIS Benchmark (#3496 ) Co-authored-by: chenk <hen.keinan@gmail.com>	2023-01-31 07:31:59 +02:00
Teppei Fukuda	fb0d8f3f30	feat(image): scan misconfigurations in image config (#3437 )	2023-01-30 04:48:29 +02:00
Teppei Fukuda	e1076085d9	refactor: rename security-checks to scanners (#3467 )	2023-01-23 16:53:06 +02:00
chenk	4d59a1ef9b	fix: compliance change id and title naming (#3349 ) Signed-off-by: chenk <hen.keinan@gmail.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2022-12-29 17:46:50 +02:00
chenk	a888440922	feat: add k8s cis bench (#3315 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2022-12-28 20:38:48 +02:00
tockn	e92266f2c8	feat(vm): add `region` option to vm scan to be able to scan any region's ami and ebs snapshots (#3284 ) Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>	2022-12-15 12:21:05 +02:00
simar7	a3eece4fef	feat(misconf): Add compliance check support (#3130 ) Signed-off-by: Simar <simar@linux.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2022-12-07 22:42:59 +02:00
Masahiro331	22d92e4ad6	feat: add virtual machine scan command (#2910 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2022-11-27 11:45:00 +02:00
chenk	3b6d7d8cb1	fix(cli): exclude --compliance flag from non supported sub-commands (#3158 )	2022-11-13 09:39:25 +02:00
DmitriyLewen	e9a2549955	fix: remove --security-checks none from image help (#3156 )	2022-11-13 09:38:25 +02:00
Teppei Fukuda	9468056c0f	feat(vuln): support dependency graph for dpkg and apk (#3093 ) Co-authored-by: Masahiro331 <m_fujimura@r.recruit.co.jp>	2022-10-31 08:54:42 +02:00
bgoareguer	a377c8d04f	feat(server): Add support for client/server mode to rootfs command (#3021 )	2022-10-25 21:04:29 +03:00
saso	63b8e4d6a0	fix(flag): disable flag parsing for each plugin command (#3074 )	2022-10-25 19:02:42 +03:00
Jose Donizetti	9b0e9794cb	feat: add k8s components (#2589 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2022-10-24 14:51:02 +03:00
Liam Galvin	babd7e7526	feat(aws): Custom rego policies for AWS scanning (#2994 )	2022-10-06 12:51:45 +03:00
DmitriyLewen	237b8dcd06	fix(flag): add file-patterns flag for config subcommand (#2925 )	2022-09-21 10:02:58 +03:00
Liam Galvin	b259b25ce4	feat: Add AWS Cloud scanning (#2493 ) * feat: Added AWS Cloud scanning Co-authored-by: Owen Rumney <owen.rumney@aquasec.com>	2022-08-11 14:59:32 +01:00

1 2 3

117 Commits