trivy

mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-22 15:16:33 -08:00

Author	SHA1	Message	Date
Teppei Fukuda	55ccd06df4	feat: add memory cache backend (#7048 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-06-28 09:42:02 +00:00
chenk	8d618e48a2	feat(k8s)!: node-collector dynamic commands support (#6861 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2024-06-26 07:04:50 +00:00
Teppei Fukuda	8d0ae1f5de	feat!: add clean subcommand (#6993 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-06-25 09:06:27 +00:00
simar7	b58d42dc97	BREAKING(aws): Deprecate `trivy aws` as subcmd in favour of a plugin (#6819 )	2024-06-20 19:56:46 +00:00
Teppei Fukuda	56dbe1f676	fix: include packages unless it is not needed (#6765 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-05-28 07:22:45 +00:00
chenk	ff32deb7bf	fix: node-collector high and critical cves (#6707 ) Signed-off-by: chenk <hen.keinan@gmail.com> Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2024-05-20 05:09:27 +00:00
Teppei Fukuda	d6dc56732b	feat(plugin): specify plugin version (#6683 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-05-17 09:29:19 +00:00
simar7	88702cfd59	feat(misconf): Add support for deprecating a check (#6664 ) Signed-off-by: Simar <simar@linux.com>	2024-05-16 01:14:51 +00:00
Teppei Fukuda	26faf8f3f0	feat: add support for plugin index (#6674 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-05-14 08:29:20 +00:00
simar7	37da98df45	feat(misconf): Use updated terminology for misconfiguration checks (#6476 ) Signed-off-by: Simar <simar@linux.com>	2024-05-02 18:16:17 +00:00
chenk	e739ab8506	feat: support `--skip-images` scanning flag (#6334 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2024-05-02 11:49:39 +00:00
chenk	c6d5d856ce	BREAKING: add support for k8s `disable-node-collector` flag (#6311 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2024-05-02 11:08:59 +00:00
chenk	060d0bb641	BREAKING: support exclude `kinds/namespaces` and include `kinds/namespaces` (#6323 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2024-04-27 14:30:17 +00:00
DmitriyLewen	7811ad0d24	docs: update info about config file (#6547 ) Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>	2024-04-25 11:30:49 +00:00
Jan-Otto Kröpke	53517d622b	feat(misconf): add helm-api-version and helm-kube-version flag (#6332 ) Co-authored-by: Simar <simar@linux.com>	2024-04-06 05:07:56 +00:00
Ivo Šmíd	eb3ceb323d	feat(sbom): Support license detection for SBOM scan (#6072 ) Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-03-18 09:34:26 +00:00
DmitriyLewen	96bd7ac594	fix(db): use schema version as tag only for `trivy-db` and `trivy-java-db` registries by default (#6219 )	2024-03-11 06:57:56 +00:00
Parvez	9d2057a7c2	feat(image): customer podman host or socket option (#6256 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-03-11 04:27:57 +00:00
Nikita Pivkin	9361cdb7e2	feat(terraform): Terraform Plan snapshot scanning support (#6176 ) Co-authored-by: Simar <simar@linux.com> Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>	2024-03-04 22:37:31 +00:00
Teppei Fukuda	3c1601b6cb	feat(vuln): show suppressed vulnerabilities in table (#6084 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-02-13 12:35:06 +00:00
Teppei Fukuda	e2eb70ecb8	feat(vuln): enable `--vex` for all targets (#5992 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-01-25 10:34:34 +00:00
Bishwa Thapa	2c9d7c6b50	feat: allow end-users to adjust K8S client QPS and burst (#5910 )	2024-01-15 19:08:52 +00:00
Teppei Fukuda	99c04c4383	feat(report): output plugin (#4863 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2023-12-04 11:04:43 +00:00
chenk	256957523a	feat: Add flag to configure node-collector image ref (#5710 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2023-12-04 10:25:12 +00:00
simar7	b5874e3ad3	feat(misconf): Add `--misconfig-scanners` option (#5670 )	2023-11-29 23:59:17 +00:00
simar7	e3c28f8ee3	feat(misconf): Add support for `--cf-params` for CFT (#5507 ) Signed-off-by: Simar <simar@linux.com> Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>	2023-11-15 07:04:22 +00:00
Teppei Fukuda	ac0e327492	feat(flag): replace '--slow' with '--parallel' (#5572 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2023-11-15 06:41:13 +00:00
Teppei Fukuda	a96ec35572	feat: add aliases to '--scanners' (#5558 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2023-11-15 00:53:22 +00:00
Teppei Fukuda	cccaa15ccd	chore: sort supported AWS services (#5570 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2023-11-14 05:35:42 +00:00
DmitriyLewen	138feb024c	fix(cli): set correct `scanners` for `k8s` target (#5561 )	2023-11-13 07:24:22 +00:00
simar7	e7f6a5c805	refactor(misconf): Update refactored dependencies (#5245 ) Signed-off-by: Simar <simar@linux.com>	2023-11-09 02:24:52 +00:00
simar7	53c9a7d762	docs(misconf): Update `--tf-exclude-downloaded-modules` description (#5419 )	2023-10-24 13:03:02 +00:00
simar7	01c98d1516	feat(misconf): Support `--ignore-policy` in config scans (#5359 ) Signed-off-by: Simar <simar@linux.com>	2023-10-23 07:32:08 +00:00
DmitriyLewen	0ccbb4f7fd	chore(cli): disable java-db flags in server mode (#5263 ) * disable java-db flag for server mode * update docs	2023-09-28 07:10:14 +00:00
Bishwa Thapa	0c8919e1e4	feat: filter artifacts on --exclude-owned flag (#5059 ) * feat: filter artifacts on --exclude-owned flag - filter artifacts using trivy-kubernetes library - upgrade dependencies - generate docs * chore: remove shorthand flag for --exclude-owned flag	2023-08-31 10:17:52 +00:00
Florian Bufler	9345a98ed1	docs(repo): update trivy repo usage and example (#5049 )	2023-08-28 08:46:39 +00:00
Will Yardley	6d3ae3bcf2	docs(cli): update help string for file and dir skipping (#4872 ) * docs(cli): update help string for file and dir skipping - Update the contextual help messages - Add some additional examples (and clarify YAML file configuration) for globbing - Update docs - Fix broken link in skipping docs See also #3754 Signed-off-by: William Yardley <wyardley@users.noreply.github.com> * docs: revert --------- Signed-off-by: William Yardley <wyardley@users.noreply.github.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-08-02 12:33:59 +00:00
Teppei Fukuda	232ba823e1	feat(vuln): support vulnerability status (#4867 ) * feat: support vulnerability status * feat: show status in table * don't add `fixed` status in debian/redhat * update test golden files * add Status in rpc * update docs * update ignore-status example * add ignore-status in integration test * docs: add the explanation for statuses --------- Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2023-07-26 11:55:03 +00:00
simar7	11618c9408	feat(misconf): Support custom URLs for policy bundle (#4834 ) * feat(misconf): Support custom URLs for policy bundle This PR adds support for custom policy bundles to be specified with a flag `--policy-bundle-url` as an option to Trivy. Fixes: https://github.com/aquasecurity/trivy/issues/4672 Signed-off-by: Simar <simar@linux.com> * update docs Signed-off-by: Simar <simar@linux.com> * rename flag to `--policy-bundle-repository` Signed-off-by: Simar <simar@linux.com> * fix field * rebase and update docs Signed-off-by: Simar <simar@linux.com> * set policyBundleRepo on client Signed-off-by: Simar <simar@linux.com> --------- Signed-off-by: Simar <simar@linux.com>	2023-07-26 08:45:49 +00:00
DmitriyLewen	24a3e547d9	feat(nodejs): add support for include-dev-deps flag for yarn (#4812 ) * add support for include-dev-deps flag * remove go.mod replace * refactor * bump go-dep-parser --------- Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-07-23 13:07:49 +00:00
Teppei Fukuda	aca11b95d0	refactor: add allowed values for CLI flags (#4800 ) * refactor: rename Value to Default * refactor: support allowed values for CLI flags * docs: auto-generate * test: fix * test: add tests for flags	2023-07-17 13:13:23 +00:00
Nikita Pivkin	3c7d988d71	feat(cli): add --tf-exclude-downloaded-modules flag (#4810 ) * feat(cli): add --tf-exclude-downloaded-modules flag * fix typo * generate docs	2023-07-16 08:56:03 +00:00
Nikita Pivkin	d0d543b881	feat(misconf): enable --policy flag to accept directory and files both (#4777 ) * feat(misconf): enable --policy flag to accept directory and files both * fix test * Revert "clarifying a dir path is required for custom policies (#4716)" This reverts commit `8a1aa448a1`. * update doc * update the flag description	2023-07-13 10:59:21 +00:00
DmitriyLewen	22463ababd	feat(cli): add include-dev-deps flag (#4700 ) * add Dev field for Package * fix integration test * update docs * feat(cli): add include-dev flag * bump go-dep-parser * update docs * add integration test * refactor * refactor * fix integration test * refactor: rename flag to include-dev-deps * update docs * update docs * filter dev deps when scanning packages * add flag support for server mode * refactor: remove comment that might confuse * refactor: move --include-dev-deps to the scanner flag group * refactor: not return apps * docs: update --------- Co-authored-by: knqyf263 <knqyf263@gmail.com>	2023-06-29 13:15:52 +00:00
simar7	5d73b47dbc	feat(misconf): Support skipping services (#4686 ) * feat(misconf): Add support for `--skip-service` flag. Fixes: https://github.com/aquasecurity/trivy/issues/4619 Signed-off-by: Simar <simar@linux.com> * update docs Signed-off-by: Simar <simar@linux.com> * update go mod * refactor processOptions to reduce cyclo complexity Signed-off-by: Simar <simar@linux.com> * fix a bug with multiple skip services Signed-off-by: Simar <simar@linux.com> * refactor tests Signed-off-by: Simar <simar@linux.com> * use x/slice and x/xerrors Signed-off-by: Simar <simar@linux.com> * go mod tidy * lint --------- Signed-off-by: Simar <simar@linux.com>	2023-06-26 11:11:59 +00:00
chenk	35c4262d0b	feat(k8s): cyclonedx kbom support (#4557 ) * feat: cyclonedx kbom support Signed-off-by: chenk <hen.keinan@gmail.com> * feat: cyclonedx kbom support Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * chore: update sum db Signed-off-by: chenk <hen.keinan@gmail.com> * chore: update sum db Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * chore: update sumdb Signed-off-by: chenk <hen.keinan@gmail.com> * chore: update sumdb Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> * feat: kubernetes bill of materials Signed-off-by: chenk <hen.keinan@gmail.com> --------- Signed-off-by: chenk <hen.keinan@gmail.com>	2023-06-19 10:48:26 +00:00
chenk	ef6538a171	feat: trivy k8s private registry support (#4567 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2023-06-12 05:40:25 +03:00
Teppei Fukuda	48b2e15c23	refactor(cyclonedx): add intermediate representation (#4490 )	2023-06-01 05:50:47 +03:00
chenk	12a1789be5	feat(k8s): exclude node scanning by node labels (#4459 ) Signed-off-by: chenk <hen.keinan@gmail.com>	2023-05-25 14:52:28 +03:00
Teppei Fukuda	50fe43f14c	feat(cli): convert JSON reports into a different format (#4452 ) Co-authored-by: Aurelien LAJOIE <aurelien.lajoie@kili-technology.com>	2023-05-24 11:45:26 +03:00

1 2

61 Commits