gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-22 07:10:41 -08:00
Code Issues Packages Projects Releases Wiki Activity
2,861 Commits 29 Branches 178 Tags
56dbe1f6768fe67fbc1153b74fde0f83eaa1b281
Commit Graph

60 Commits

Author SHA1 Message Date
Teppei Fukuda
56dbe1f676 fix: include packages unless it is not needed (#6765) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-05-28 07:22:45 +00:00
Nikita Pivkin
ebb123f37f chore: replace interface{} with any (#6751) 2024-05-27 02:53:19 +00:00
Matthieu MOREL
bbaf5952bc ci(deps): enable require-error rule from testifylint linter (#6718) 
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
 2024-05-20 07:12:43 +00:00
Teppei Fukuda
998f750432 feat: introduce package UIDs for improved vulnerability mapping (#6583) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-05-03 11:14:34 +00:00
DmitriyLewen
a2482c14e1 fix(server): add Locations for Packages in client/server mode (#6366) 2024-03-24 09:46:56 +00:00
Teppei Fukuda
59e54334d1 fix(cli): inconsistent behavior across CLI flags, environment variables, and config files (#5843) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-02-01 03:25:30 +00:00
Teppei Fukuda
da597c479c refactor: propagate time through context values (#5858) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-01-03 09:43:45 +00:00
Juan Ariza Toledano
1f0d6290c3 feat(vuln): include pkg identifier on detected vulnerabilities (#5439) 
Signed-off-by: juan131 <jariza@vmware.com>
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
Co-authored-by: Nikita Pivkin <nikita.pivkin@smartforce.io>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-12-27 07:54:56 +00:00
DmitriyLewen
c317fe828d fix(report): fix error if miconfigs are empty (#5782) 2023-12-13 09:34:37 +00:00
Y.Horie
f4dd062f58 feat(report): Add CreatedAt to the JSON report. (#5542) (#5549) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-11-15 04:11:09 +00:00
dependabot[bot]
474167c47e chore(deps): bump github.com/testcontainers/testcontainers-go/modules/localstack from 0.21.0 to 0.26.0 (#5475) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2023-11-03 01:36:27 +00:00
Teppei Fukuda
d3a34e409c test: validate CycloneDX with the JSON schema (#4956) 
* test: validate CycloneDX with the JSON schema

* fix(sbom): move licenses to `name` field in Cyclonedx format (#4941)

* use license.Name instead of Expression

* update tests

* test: add uuid package

* test: compare UUID

---------

Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2023-08-08 12:51:10 +00:00
Teppei Fukuda
d19c7d9f29 feat(repo): support local repositories (#4890) 
* feat(repo): support local repositories

* fix tests

* test: fix client/server tests

* docs: update

* test: add fs tests

* test: do not update golden files if overridden

* docs: remove a comment about fs deprecation
 2023-07-31 11:27:36 +00:00
Teppei Fukuda
48b2e15c23 refactor(cyclonedx): add intermediate representation (#4490) 2023-06-01 05:50:47 +03:00
DmitriyLewen
d298415c09 feat(cli): add mage command to update golden integration test files (#4380) 2023-05-16 13:58:50 +03:00
afdesk
4072115e5a feat(cyclonedx): support dependency graph (#3177) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-04-01 00:46:30 +03:00
Pikaqiu
8744534c28 feat: support scan remote repository (#3131) 
Co-authored-by: AMF <work@afdesk.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-12-11 11:57:04 +02:00
AndrewCharlesHay
5b975de234 feat(report): add secret scanning to ASFF template (#2860) 
Co-authored-by: AMF <work@afdesk.com>
 2022-10-28 08:27:10 +03:00
Masahiro331
9f6680a1fa feat(sbom): Add unmarshal for spdx (#2868) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-09-15 08:39:59 +03:00
Ankush K
d8d8e62793 fix(secret): Consider secrets in rpc calls (#2753) 2022-08-25 09:36:51 +03:00
Teppei Fukuda
ed1fa89117 revert: add new classes for vulnerabilities (#2701) 2022-08-15 21:40:29 +03:00
Teppei Fukuda
5b7e0a858d refactor: move from urfave/cli to spf13/cobra (#2458) 
Co-authored-by: afdesk <work@afdesk.com>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2022-07-09 19:40:31 +03:00
Josh Soref
d6d0a60d16 chore: fix spelling errors (#2352) 2022-06-20 09:56:13 +03:00
Teppei Fukuda
7cecade3a1 feat: add support for WASM modules (#2195) 2022-06-15 15:23:00 +03:00
afdesk
b213956cea test: replace deprecated subcommand client in integration tests (#2308) 2022-06-12 20:38:55 +03:00
Teppei Fukuda
f1c6af3121 test: use images in GHCR (#2275) 
Co-authored-by: AMF <work@afdesk.com>
 2022-06-07 13:50:32 +03:00
AndreyLevchenko
4ab696eaa2 feat(report): GitHub Dependency Snapshots support (#1522) 
Co-authored-by: Shira Cohen <97398476+ShiraCohen33@users.noreply.github.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-05-26 21:34:15 +03:00
Teppei Fukuda
6fdb554a0d feat(alpine): support apk repositories (#1987) 2022-04-14 09:52:51 +03:00
afdesk
d6418cf0de feat(filesystem): scan in client/server mode (#1829) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-21 15:51:18 +02:00
Masahiro331
58ade462b4 feat(report): add support for CycloneDX (#1081) 
Co-authored-by: tspearconquest <81998567+tspearconquest@users.noreply.github.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-02-22 18:01:15 +02:00
Teppei Fukuda
8d5882be03 refactor: migrate to prefixed buckets (#1644) 2022-01-31 10:05:38 +02:00
Masahiro331
84dd33f7e9 feat(mariner): add support for CBL-Mariner (#1640) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-01-29 22:53:07 +02:00
Teppei Fukuda
d2827cba06 feat(redhat): support build info in RHEL (#807) 2022-01-28 18:35:00 +02:00
MaineK00n
f5c5573936 feat(rocky): support Rocky Linux (#1570) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-01-20 11:43:43 +02:00
afdesk
8da20c8c92 BREAKING: migrate the sarif template to Go code (#1437) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-01-12 08:49:47 +02:00
MaineK00n
2a8336b9aa feat(alma): support AlmaLinux (#1238) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2022-01-06 22:26:09 +02:00
Teppei Fukuda
8b2a799721 test(integration): use fixtures (#1532) 2021-12-30 20:53:03 +02:00
Teppei Fukuda
b37f682ee2 BREAKING(report): migrate to new json schema (#1265) 2021-10-04 10:22:24 +03:00
Eng Zer Jun
bbcce9f7b7 refactor: move from io/ioutil to io and os package (#1245) 
The io/ioutil package has been deprecated as of Go 1.16, see
https://golang.org/doc/go1.16#ioutil. This commit replaces the existing
io/ioutil functions with their new definitions in io and os packages.

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2021-09-29 10:17:02 +03:00
Ankush K
dbc7a83e8c feat(python): add packaging detector and respective hook (#1223) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2021-09-13 20:59:11 +03:00
Teppei Fukuda
40ed227c23 chore(mod): update fanal (#1179) 
* chore(mod): update fanal

* test(integration): fix error message

* test(integration): skip reaper
 2021-08-15 15:19:22 +03:00
Teppei Fukuda
a0e5c3a2e2 feat: support config scanning (#931) 2021-07-09 08:18:53 +03:00
bmagistro
d2afc206b2 feat: add gitlab codequality template (#895) 
* Add gitlab codequality template

* add unit test for gitlab codequality template

* update line endings to msdos (\r\n) from unix

* update gitlab docs for codeclimate template
 2021-05-31 11:20:59 +03:00
Teppei Fukuda
c26a3e481f refactor(internal): export internal packages (#887) 
* refactor: export internal packages

* refactor(server): define Server

* refactor: fix lint issues

* test(integration): fix imports
 2021-03-14 17:04:01 +02:00
Robert Jacob
e2c483f856 Remove global flags from filesystem command (#772) 
* Remove global flags from subcommands

If the global flags are added to the subcommand as well as being used
globally, their value will be overwritten when the arguments for the
subcommand are parsed. This leads to the value passed to the flag at the
global position being lost.

* Update readme
 2021-01-05 12:49:39 +02:00
Teppei Fukuda
7b86f81e29 feat(cache): support Redis (#770) 
* feat(config): add --cache-backend

* feat(operation): embed cache.Cache into operation.Cache

* feat(cache): support redis://

* test(integration): add redis test

* chore(README): add --cache-backend

* chore(mod): update

* chore: add disclaimer
 2020-12-21 08:26:19 +02:00
irrandon
cb369727cd HTML template (#567) 
* add html template

* test(integration): use JSONEq only for JSON folden files

Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2020-12-02 10:50:45 +02:00
rahul2393
675e1b4118 Added test and support of ASFF template (#594) 
* Added test and support of ASFF template

* Improve test coverage

* Fixed/Improved tests

* Removed extra space

* Added NVD score/vectors, Added logic to trim description due to file size restriction

* Included quotations around AccountID
 2020-08-12 13:25:58 +03:00
rahul2393
43085a80bc Added sarif template (#558) 
* Added sarif template

* Updated readme

* fixed tests

* Added integration tests and fixed all sarif validations issues

* Added tests for endWithPeriod

* Fixed tests, and added sarif golden file

* removed optional newline sequence
 2020-07-17 11:08:50 -07:00
Teppei Fukuda
aa20adb22b chore: bump up urfave/cli to v2 (#499) 2020-05-18 14:43:06 +03:00