trivy

mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-23 07:29:00 -08:00

Author	SHA1	Message	Date
Teppei Fukuda	c80310d769	refactor: rename scanner to service (#8584 )	2025-03-23 23:47:03 +00:00
simar7	68b164ddf4	refactor(misconf): Simplify misconfig checks bundle parsing (#8533 )	2025-03-21 22:38:26 +00:00
Itay Shakury	49456ba841	fix: update all documentation links (#8045 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2025-02-26 10:41:46 +00:00
Nikita Pivkin	5695eb22df	fix(misconf): do not log scanners when misconfig scanning is disabled (#8345 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-02-04 10:44:39 +00:00
Nikita Pivkin	509e03030c	feat(image): prevent scanning oversized container images (#8178 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2025-01-27 06:38:52 +00:00
Teppei Fukuda	da17dc7278	feat: add `--distro` flag to manually specify OS distribution for vulnerability scanning (#8070 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-12-09 11:46:49 +00:00
DmitriyLewen	5e68bdc9d0	fix(flag): skip hidden flags for `--generate-default-config` command (#8046 )	2024-12-05 11:22:50 +00:00
Johannes Feichtner	c225883649	feat(cyclonedx): add file checksums to `CycloneDX` reports (#7507 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2024-10-18 07:10:46 +00:00
Teppei Fukuda	69bf7e00ea	feat: support RPM archives (#7628 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-10-02 11:44:17 +00:00
Teppei Fukuda	1faf5297e7	chore: add prefixes to log messages (#7625 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>	2024-10-02 07:04:11 +00:00
simar7	c0e8da3828	feat(misconf): Support `--skip-*` for all included modules (#7579 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-10-02 05:20:03 +00:00
Nikita Pivkin	3562529ddf	feat: support multiple DB repositories for vulnerability and Java DB (#7605 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-10-01 13:16:06 +00:00
Nikita Pivkin	bfdf5cfc30	refactor(misconf): use slog (#7295 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-08-23 04:27:17 +00:00
Teppei Fukuda	24a4563686	feat(server): add internal `--path-prefix` flag for client/server mode (#7321 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-08-21 05:26:11 +00:00
Nikita Pivkin	efdbd8f19a	feat(misconf): scanning support for YAML and JSON (#7311 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-08-20 04:55:45 +00:00
Nikita Pivkin	7278abd4e4	docs: update client/server docs for misconf and license scanning (#7277 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: knqyf263 <knqyf263@gmail.com>	2024-08-07 07:06:40 +00:00
Teppei Fukuda	fd8348d610	feat(vuln): Add `--detection-priority` flag for accuracy tuning (#7288 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-08-02 10:41:56 +00:00
Teppei Fukuda	5c37361600	feat(vuln): add `--pkg-relationships` (#7237 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-07-29 06:18:59 +00:00
Teppei Fukuda	88ba46047c	feat(vex): VEX Repository support (#7206 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2024-07-25 12:18:37 +00:00
DmitriyLewen	7cbdb0a0b5	feat(cli): rename `--vuln-type` flag to `--pkg-types` flag (#7104 )	2024-07-09 08:06:29 +00:00
Teppei Fukuda	fc6b3a760b	refactor: pass DB dir to trivy-db (#7057 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-07-02 04:32:46 +00:00
Teppei Fukuda	4be02bab8c	refactor: use google/wire for cache (#7024 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-06-27 07:04:01 +00:00
Teppei Fukuda	8d0ae1f5de	feat!: add clean subcommand (#6993 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-06-25 09:06:27 +00:00
Teppei Fukuda	648ead9553	refactor: replace global cache directory with parameter passing (#6986 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-06-21 09:45:39 +00:00
Teppei Fukuda	6dff4223ed	refactor: unify cache implementations (#6977 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-06-21 06:35:33 +00:00
Teppei Fukuda	30bcb95350	refactor: use version-specific URLs for documentation references (#6966 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-06-20 10:41:43 +00:00
Teppei Fukuda	983ac15f22	ci: add depguard (#6963 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-06-20 02:48:08 +00:00
Teppei Fukuda	56dbe1f676	fix: include packages unless it is not needed (#6765 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-05-28 07:22:45 +00:00
simar7	88702cfd59	feat(misconf): Add support for deprecating a check (#6664 ) Signed-off-by: Simar <simar@linux.com>	2024-05-16 01:14:51 +00:00
Katrin Leinweber	38e2fbf7f9	docs: link warning to both timeout config options (#6620 )	2024-05-06 08:26:37 +00:00
DmitriyLewen	14c1024b47	refactor: move setting scanners when using compliance reports to flag parsing (#6619 )	2024-05-03 11:27:37 +00:00
simar7	37da98df45	feat(misconf): Use updated terminology for misconfiguration checks (#6476 ) Signed-off-by: Simar <simar@linux.com>	2024-05-02 18:16:17 +00:00
Teppei Fukuda	f0961d54f6	feat: respect custom exit code from plugin (#6584 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-05-02 05:07:49 +00:00
Nikita Pivkin	12ec0dfe9e	feat(misconf): loading embedded checks as a fallback (#6502 )	2024-04-19 06:22:31 +00:00
Teppei Fukuda	13e72eca58	refactor: remove parallel walk (#5180 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2024-04-17 18:24:18 +00:00
Teppei Fukuda	94d6e8ced6	refactor: replace zap with slog (#6466 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: Nikita Pivkin <nikita.pivkin@smartforce.io> Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>	2024-04-11 18:59:09 +00:00
Jan-Otto Kröpke	53517d622b	feat(misconf): add helm-api-version and helm-kube-version flag (#6332 ) Co-authored-by: Simar <simar@linux.com>	2024-04-06 05:07:56 +00:00
Jeff Rescignano	f23ed77598	feat(misconf): Support private registries for misconf check bundle (#6327 )	2024-04-01 05:45:58 +00:00
Parvez	9d2057a7c2	feat(image): customer podman host or socket option (#6256 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-03-11 04:27:57 +00:00
saso	7694df11fb	fix(sbom): skip executable file analysis if Rekor isn't a specified SBOM source (#6163 )	2024-02-20 06:44:35 +00:00
Teppei Fukuda	99c04c4383	feat(report): output plugin (#4863 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2023-12-04 11:04:43 +00:00
simar7	b5874e3ad3	feat(misconf): Add `--misconfig-scanners` option (#5670 )	2023-11-29 23:59:17 +00:00
simar7	13362233c8	feat(misconf): Expose misconf engine debug logs with `--debug` option (#5550 ) Signed-off-by: Simar <simar@linux.com>	2023-11-16 02:29:38 +00:00
simar7	e3c28f8ee3	feat(misconf): Add support for `--cf-params` for CFT (#5507 ) Signed-off-by: Simar <simar@linux.com> Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>	2023-11-15 07:04:22 +00:00
Teppei Fukuda	ac0e327492	feat(flag): replace '--slow' with '--parallel' (#5572 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2023-11-15 06:41:13 +00:00
Michel Meyer	908a4914c7	feat(db): allow passing registry options (#5226 ) * feat(db): allow passing registry options Signed-off-by: Michel Meyer <meyer_michel@outlook.com> * feat(db): pass cli registry options to javaDB --------- Signed-off-by: Michel Meyer <meyer_michel@outlook.com>	2023-09-27 13:17:11 +00:00
Teppei Fukuda	9628b1cbf3	feat: add support for .trivyignore.yaml (#5070 ) * feat: add support for .trivyignore.yaml Signed-off-by: knqyf263 <knqyf263@gmail.com> * add test for trivyignore.yaml * Add doublestar support Signed-off-by: knqyf263 <knqyf263@gmail.com> * go mod tidy Signed-off-by: knqyf263 <knqyf263@gmail.com> * update docs * test: fix Signed-off-by: knqyf263 <knqyf263@gmail.com> * fix: load .trivyignore once Signed-off-by: knqyf263 <knqyf263@gmail.com> * feat: add a debug log Signed-off-by: knqyf263 <knqyf263@gmail.com> * docs: add a table for fields Signed-off-by: knqyf263 <knqyf263@gmail.com> * fix: skip empty results Signed-off-by: knqyf263 <knqyf263@gmail.com> * revert the change Signed-off-by: knqyf263 <knqyf263@gmail.com> --------- Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2023-08-31 11:53:37 +00:00
Nikita Pivkin	e8cf281471	fix(aws): resolve endpoint if endpoint is passed (#4925 ) * fix(aws): resolve endpoint to get identity if endpoint is passed * resolve endpoint for ami and ebs * return an error if aws region is missing	2023-08-08 07:19:40 +00:00
simar7	11618c9408	feat(misconf): Support custom URLs for policy bundle (#4834 ) * feat(misconf): Support custom URLs for policy bundle This PR adds support for custom policy bundles to be specified with a flag `--policy-bundle-url` as an option to Trivy. Fixes: https://github.com/aquasecurity/trivy/issues/4672 Signed-off-by: Simar <simar@linux.com> * update docs Signed-off-by: Simar <simar@linux.com> * rename flag to `--policy-bundle-repository` Signed-off-by: Simar <simar@linux.com> * fix field * rebase and update docs Signed-off-by: Simar <simar@linux.com> * set policyBundleRepo on client Signed-off-by: Simar <simar@linux.com> --------- Signed-off-by: Simar <simar@linux.com>	2023-07-26 08:45:49 +00:00
Teppei Fukuda	20c2246a61	fix(report): close the file (#4842 ) * fix(report): close the file * refactor: add the format type * fix: return errors in version printing * fix: lint issues * fix: do not fail on bogus cache dir --------- Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2023-07-23 13:37:18 +00:00

1 2 3

146 Commits