gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-21 23:00:42 -08:00
Code Issues Packages Projects Releases Wiki Activity
1,904 Commits 29 Branches 178 Tags
92eaf636ca8e02d091ae6dad22efd709c21f8ce9
Commit Graph

70 Commits

Author SHA1 Message Date
chenk
92eaf636ca feat: config outdated-api result filtered by k8s version (#3578) 
Signed-off-by: chenk <hen.keinan@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-02-22 15:41:37 +02:00
Jack Lin
32acd293fd feat(flag): add exit-on-eosl option (#3423) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-02-15 10:51:15 +02:00
Alexej Disterhoft
86603bb9c5 fix(cli): make java db repository configurable (#3595) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-02-14 15:01:15 +02:00
Teppei Fukuda
7f8868b7d8 fix(sbom): download the Java DB when generating SBOM (#3539) 2023-02-01 17:33:09 +02:00
DmitriyLewen
7bf1e192ec feat(java): use trivy-java-db to get GAV (#3484) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-02-01 11:48:05 +02:00
Teppei Fukuda
cb5af0b33b feat(image): add support for Docker CIS Benchmark (#3496) 
Co-authored-by: chenk <hen.keinan@gmail.com>
 2023-01-31 07:31:59 +02:00
Teppei Fukuda
fb0d8f3f30 feat(image): scan misconfigurations in image config (#3437) 2023-01-30 04:48:29 +02:00
Teppei Fukuda
e1076085d9 refactor: rename security-checks to scanners (#3467) 2023-01-23 16:53:06 +02:00
simar7
a1d4427c8b feat(misconf): Fetch policies from OCI registry (#3015) 
Signed-off-by: Simar <simar@linux.com>
 2023-01-15 13:37:04 +02:00
behara
c110c4e028 revert: cache merged layers (#3334) 
This reverts commit 6b4ddaaef2.
 2022-12-28 10:01:01 +02:00
tockn
e92266f2c8 feat(vm): add region option to vm scan to be able to scan any region's ami and ebs snapshots (#3284) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2022-12-15 12:21:05 +02:00
Pikaqiu
8744534c28 feat: support scan remote repository (#3131) 
Co-authored-by: AMF <work@afdesk.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-12-11 11:57:04 +02:00
Masahiro331
22d92e4ad6 feat: add virtual machine scan command (#2910) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-11-27 11:45:00 +02:00
Teppei Fukuda
757178341d feat: add slow mode (#3084) 
Co-authored-by: AMF <work@afdesk.com>
 2022-11-14 15:49:02 +02:00
Teppei Fukuda
7cc83cc2f6 perf(license): enable license classifier only with "--license-full" (#3086) 2022-10-28 20:16:16 +03:00
Shubham Palriwala
8ae4627941 feat(image): add support for passing architecture and OS (#3012) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-10-25 22:03:50 +03:00
Teppei Fukuda
02a73f0138 feat(vuln): support non-packaged binaries (#3019) 2022-10-25 20:02:53 +03:00
afdesk
38c1513af6 fix: remove a patch number from the recommendation link (#2891) 2022-09-16 12:23:58 +03:00
saso
192fd78ca2 feat(sbom): scan sbom attestation in the rekor record (#2699) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-09-15 20:16:39 +03:00
Teppei Fukuda
2de903ca35 refactor: add a new interface for initializing analyzers (#2835) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2022-09-12 11:46:53 +03:00
Teppei Fukuda
6b4ddaaef2 feat: cache merged layers 
igned-off-by: knqyf263 <knqyf263@gmail.com>
 2022-09-06 11:04:00 +03:00
jerbob92
5f0bf1445a feat: move file patterns to a global level to be able to use it on any analyzer (#2539) 2022-09-01 11:01:57 +03:00
Jose Donizetti
2f2952c658 fix: fix k8s rbac filter (#2765) 2022-08-23 11:56:06 +03:00
Moulick Aggarwal
ddffb1b451 fix(cli): secret scanning perf link fix (#2607) 2022-08-15 16:15:22 +03:00
Liam Galvin
b259b25ce4 feat: Add AWS Cloud scanning (#2493) 
* feat: Added AWS Cloud scanning

Co-authored-by: Owen Rumney <owen.rumney@aquasec.com>
 2022-08-11 14:59:32 +01:00
Owen Rumney
01123854b4 feat: Support passing value overrides for configuration checks (#2679) 2022-08-08 18:22:58 +03:00
Shubham Palriwala
30c9f90bf8 feat(repo): add support for branch, commit, & tag (#2494) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-07-17 13:54:28 +03:00
Owen Rumney
a3a66df007 feat: Add support for license scanning (#2418) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2022-07-13 22:36:41 +03:00
Teppei Fukuda
5b7e0a858d refactor: move from urfave/cli to spf13/cobra (#2458) 
Co-authored-by: afdesk <work@afdesk.com>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2022-07-09 19:40:31 +03:00
Masahiro331
5b821d3b13 feat(sbom): add cyclonedx sbom scan (#2203) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-07-03 20:03:21 +03:00
Jonathan Pulsifer
f64534651a fix(cli): fix version string in docs link when secret scanning is enabled (#2422) 
Signed-off-by: Jonathan Pulsifer <jonathan@pulsifer.ca>
 2022-06-30 16:58:40 +03:00
Teppei Fukuda
4a197efcb2 BREAKING(sbom): change 'trivy sbom' to scan SBOM (#2408) 2022-06-27 16:42:41 +03:00
Liam Galvin
094db23a03 refactor: Fix fanal import paths and remove dotfiles 2022-06-20 09:43:33 +01:00
Josh Soref
d6d0a60d16 chore: fix spelling errors (#2352) 2022-06-20 09:56:13 +03:00
AndreyLevchenko
3e3c119555 feat(lang): add dependency origin graph (#1970) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-06-16 10:34:26 +03:00
Teppei Fukuda
7cecade3a1 feat: add support for WASM modules (#2195) 2022-06-15 15:23:00 +03:00
Teppei Fukuda
a02c06bafd feat(secret): show recommendation for slow scanning (#2051) 
Co-authored-by: afdesk <work@afdesk.com>
 2022-06-15 12:39:32 +03:00
Jose Donizetti
d8b59efea9 refactor: extract commands Runner interface (#2147) 2022-06-06 11:04:24 +03:00
DmitriyLewen
b7ec642572 feat(db): added insecure skip tls verify to download trivy db (#2140) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2022-05-26 14:54:39 +03:00
Jose Donizetti
023e09e3f3 refactor: k8s (#2116) 
* refactor: add pkg/k8s

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: extract scanner

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: extract scanVulns

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: extract scanMisconfigs

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: extract filter

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* refactor: improve k8s/run.go

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* fix(k8s): code improvements

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>

* chore: go mod tidy

Signed-off-by: Jose Donizetti <jdbjunior@gmail.com>
 2022-05-15 08:07:31 -03:00
Teppei Fukuda
b3759f54fa refactor: export useful APIs (#2108) 
Co-authored-by: Jose Donizetti <jdbjunior@gmail.com>
 2022-05-13 22:09:20 +03:00
Jose Donizetti
029dd76c30 feat: add k8s subcommand (#2065) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-05-12 21:11:29 +03:00
Liam Galvin
5a58e41476 feat(misconf): Added fs.FS based scanning via latest defsec (#2084) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-05-10 15:05:00 +03:00
DmitriyLewen
c1b4b5be16 fix(misconf): added to skip conf files if their scanning is not enabled (#2066) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-04-30 17:12:23 +03:00
Oran Moshai
b6baa65ff2 refactor(fs): scanner options (#2050) 
To allow Trivy plugins create InitializeScanner signature scanner options need to be public

Co-authored-by: oranmoshai <oran.moshai@aquasec.com>
 2022-04-26 16:05:27 +03:00
Teppei Fukuda
5f047f97db feat: add secret scanning (#1901) 
Co-authored-by: VaismanLior <97836016+VaismanLior@users.noreply.github.com>
Co-authored-by: AMF <work@afdesk.com>
 2022-04-22 17:08:18 +03:00
Sashi Kumar
02105678ed feat(db): Add dbRepository flag to get advisory database from OCI registry (#1873) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-31 16:09:01 +03:00
Teppei Fukuda
88ebc07504 chore: bump up Go to 1.18 (#1862) 2022-03-21 16:38:54 +02:00
afdesk
d6418cf0de feat(filesystem): scan in client/server mode (#1829) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-21 15:51:18 +02:00
Teppei Fukuda
11f4f81123 refactor: move result structs under types (#1696) 2022-02-09 19:31:12 +02:00