gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-22 23:26:39 -08:00
Code Issues Packages Projects Releases Wiki Activity
860 Commits 29 Branches 178 Tags
3ef450d9a49398519a6bd49327af4a88a25b216c
Commit Graph

61 Commits

Author SHA1 Message Date
Jose Donizetti
3ef450d9a4 feat: k8s resource scanning (#2118) 2022-05-15 19:01:58 +03:00
afdesk
96a5cb106a feat(image): add --server option for remote scans (#1871) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-05-15 14:56:48 +03:00
Jose Donizetti
023e09e3f3 refactor: k8s (#2116) 
* refactor: add pkg/k8s

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: extract scanner

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: extract scanVulns

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: extract scanMisconfigs

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: extract filter

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: improve k8s/run.go

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* fix(k8s): code improvements

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* chore: go mod tidy

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>
 2022-05-15 08:07:31 -03:00
Teppei Fukuda
b3759f54fa refactor: export useful APIs (#2108) 
Co-authored-by: Jose Donizetti <jdbjunior@gmail.com>
 2022-05-13 22:09:20 +03:00
Owen Rumney
2ae8faa7a8 feat(kubernetes): Add report flag for summary (#2112) 
* feat(k8s): Add report flag for summary
* chore: add headings to the severity columns
* chore: make the default output of k8s summary table

Signed-off-by: Owen Rumney <owen.rumney@aquasec.com>
 2022-05-13 19:02:01 +01:00
Jose Donizetti
029dd76c30 feat: add k8s subcommand (#2065) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-05-12 21:11:29 +03:00
Liam Galvin
5a58e41476 feat(misconf): Added fs.FS based scanning via latest defsec (#2084) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-05-10 15:05:00 +03:00
Shira Cohen
6601d2957a feat(report): add support for SPDX (#2059) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-05-02 13:44:26 +03:00
DmitriyLewen
c1b4b5be16 fix(misconf): added to skip conf files if their scanning is not enabled (#2066) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-04-30 17:12:23 +03:00
Oran Moshai
b6baa65ff2 refactor(fs): scanner options (#2050) 
To allow Trivy plugins create InitializeScanner signature scanner options need to be public

Co-authored-by: oranmoshai <oran.moshai@aquasec.com>
 2022-04-26 16:05:27 +03:00
Teppei Fukuda
e127334664 feat: support cache TTL in Redis (#2021) 2022-04-22 23:19:01 +03:00
Teppei Fukuda
5f047f97db feat: add secret scanning (#1901) 
Co-authored-by: VaismanLior <97836016+VaismanLior@users.noreply.github.com>
Co-authored-by: AMF <work@afdesk.com>
 2022-04-22 17:08:18 +03:00
Teppei Fukuda
a92da72263 fix(sbom): add --db-repository (#1964) 2022-04-07 17:57:20 +03:00
DmitriyLewen
d4e3df81e8 fix(downloadDB): add dbRepositoryFlag to repository and rootfs commands (#1956) 2022-04-06 08:51:45 +03:00
DmitriyLewen
9c19298f5f fix(downloadDB): add flag to server command (#1942) 2022-04-05 11:43:42 +03:00
Sashi Kumar
02105678ed feat(db): Add dbRepository flag to get advisory database from OCI registry (#1873) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-31 16:09:01 +03:00
Tamir Kiviti
f36d9b6f90 feat(sbom): add a dedicated sbom command (#1799) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-23 23:42:22 +02:00
afdesk
df80fd31a0 fix(option): hide false warning about remote options (#1865) 2022-03-22 16:33:03 +02:00
Teppei Fukuda
88ebc07504 chore: bump up Go to 1.18 (#1862) 2022-03-21 16:38:54 +02:00
afdesk
d6418cf0de feat(filesystem): scan in client/server mode (#1829) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-21 15:51:18 +02:00
DmitriyLewen
c3aca1524c fix(cli): json format for trivy version (#1854) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-21 14:41:41 +02:00
Teppei Fukuda
59ea0d5781 fix(option): warn list-all-pkgs only with the table format (#1755) 2022-02-22 22:48:39 +02:00
DmitriyLewen
c788676f87 feat(option): warn "--list-all-pkgs" with "--format table" (#1632) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-02-22 18:41:25 +02:00
Masahiro331
58ade462b4 feat(report): add support for CycloneDX (#1081) 
Co-authored-by: tspearconquest <81998567+tspearconquest@users.noreply.github.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-02-22 18:01:15 +02:00
Guy Ben-Aharon
4423396bcc feat(report): considering App.Writer when printing results (#1722) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-02-21 16:47:42 +02:00
Christian Zunker
aa6e1eb6f9 feat(client): configure TLS InsecureSkipVerify for server connection (#1287) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-02-13 11:34:34 +02:00
Teppei Fukuda
11f4f81123 refactor: move result structs under types (#1696) 2022-02-09 19:31:12 +02:00
Teppei Fukuda
ef8a1afcdb fix(repo): --no-progress suppresses git output (#1669) 2022-02-03 09:02:39 +02:00
Teppei Fukuda
78b2b899a0 feat(option): show a link to GitHub Discussions for --light deprecation (#1650) 2022-01-31 15:26:43 +02:00
Teppei Fukuda
50bb938a21 feat(lang-pkg): add data sources (#1625) 2022-01-27 14:22:06 +02:00
Taufik Mulyana
cabd18daae feat(cache): redis TLS support (#1297) 2022-01-18 15:16:00 +02:00
jerbob92
b507360075 feat(fs): allow scanning a single file (#1578) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-01-16 16:32:31 +02:00
DmitriyLewen
478d279919 feat: added insecure tls skip to scan git repo (#1528) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-01-14 11:25:45 +02:00
Yuval Goldberg
33bd41b40f Supress git clone output (#1590) 2022-01-14 08:59:49 +02:00
Teppei Fukuda
22054626f3 BREAKING: remove root command (#1579) 2022-01-12 16:13:13 +02:00
afdesk
8da20c8c92 BREAKING: migrate the sarif template to Go code (#1437) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-01-12 08:49:47 +02:00
Teppei Fukuda
e65274e0ef BREAKING: Trivy DB from GHCR (#1539) 2022-01-06 20:08:40 +02:00
Liam Galvin
db35450bbb feat(cli): Do not set default commands when a plugin is being run (#1549) 2022-01-06 19:10:16 +02:00
Teppei Fukuda
8f737cc6eb feat(cli): warning for root command (#1516) 2021-12-24 23:02:19 +02:00
Teppei Fukuda
59957d4c6b feat(scan): support --offline-scan option (#1511) 2021-12-24 12:20:21 +02:00
Owen Rumney
8bfbc84a41 feat(plugin): Add option to update plugin (#1462) 
* Add option to update plugin

- add plugin update [pluginName] to update
- add supporting test

* refactor: wrap errors
 2021-12-16 13:30:19 +02:00
Owen Rumney
8b5796f770 feat (plugin): add list and info command for plugin (#1452) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2021-12-15 22:36:08 +02:00
afdesk
beb60b05f3 chore: run go fmt (#1429) 2021-12-02 17:52:57 +09:00
besdollma
cc344dfbe3 fix(cli): fix incorrect comparision of DB metadata type. (#1286) 
-- Incorrect Db metadata type comparision resulted in wrong
print in show version.

This fixes #1275.

Signed-off-by: Bes Dollma <besi7dollma@gmail.com>
 2021-10-08 19:16:46 +03:00
Teppei Fukuda
1c9ccb5e03 feat(command): add rootfs command (#1271) 2021-10-04 21:03:34 +03:00
Teppei Fukuda
e0ca5eff38 feat(commands): remove deprecated options (#1270) 2021-10-04 15:49:04 +03:00
Teppei Fukuda
da905108b4 feat: improve --skip-dirs and --skip-files (#1249) 2021-10-03 13:08:09 +03:00
Fabian Windheuser
9027dc3252 Disable library analyzer for OS only scan type (#1191) 2021-09-29 11:54:46 +03:00
Eng Zer Jun
bbcce9f7b7 refactor: move from io/ioutil to io and os package (#1245) 
The io/ioutil package has been deprecated as of Go 1.16, see
https://golang.org/doc/go1.16#ioutil. This commit replaces the existing
io/ioutil functions with their new definitions in io and os packages.

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2021-09-29 10:17:02 +03:00
Ankush K
dbc7a83e8c feat(python): add packaging detector and respective hook (#1223) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2021-09-13 20:59:11 +03:00