gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-20 22:33:53 -08:00
Code Issues Packages Projects Releases Wiki Activity
3,278 Commits 29 Branches 178 Tags
e79e73d636d6fc08b05dd22ec3d7dd7c1a028458
Commit Graph

59 Commits

Author SHA1 Message Date
simar7
5ba9a83a44 feat: Update registry fallbacks (#7679) 
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2024-11-18 08:48:58 +00:00
Teppei Fukuda
1faf5297e7 chore: add prefixes to log messages (#7625) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>
 2024-10-02 07:04:11 +00:00
Nikita Pivkin
3562529ddf feat: support multiple DB repositories for vulnerability and Java DB (#7605) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2024-10-01 13:16:06 +00:00
Teppei Fukuda
9d1be410c4 refactor: fix auth error handling (#7615) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-09-30 11:22:59 +00:00
Teppei Fukuda
fc6b3a760b refactor: pass DB dir to trivy-db (#7057) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-07-02 04:32:46 +00:00
Teppei Fukuda
8d0ae1f5de feat!: add clean subcommand (#6993) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2024-06-25 09:06:27 +00:00
Teppei Fukuda
30bcb95350 refactor: use version-specific URLs for documentation references (#6966) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-06-20 10:41:43 +00:00
Teppei Fukuda
e493fc931a refactor: delete db mock (#6940) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-06-20 04:51:57 +00:00
Matthieu MOREL
bbaf5952bc ci(deps): enable require-error rule from testifylint linter (#6718) 
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
 2024-05-20 07:12:43 +00:00
Teppei Fukuda
94d6e8ced6 refactor: replace zap with slog (#6466) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: Nikita Pivkin <nikita.pivkin@smartforce.io>
Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>
 2024-04-11 18:59:09 +00:00
DmitriyLewen
8baccd7909 fix(db): check schema version for image name only (#6410) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2024-04-02 11:22:43 +00:00
DmitriyLewen
96bd7ac594 fix(db): use schema version as tag only for trivy-db and trivy-java-db registries by default (#6219) 2024-03-11 06:57:56 +00:00
Teppei Fukuda
3be5e6b242 chore: enable go-critic (#5302) 
* chore: enable gocritic

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* refactor: fix lint issues

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* test: return true for latest versions

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* chore(lint): enforce map and slice styles

Signed-off-by: knqyf263 <knqyf263@gmail.com>

---------

Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2023-10-02 08:33:21 +00:00
aswath-s-tw
be47b688c7 feat(image): custom docker host option (#3599) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-04-20 22:10:51 +03:00
Teppei Fukuda
f14bed4532 feat: add auth support for downloading OCI artifacts (#3915) 2023-03-30 05:53:24 +03:00
Teppei Fukuda
63ef760c69 feat(image): discover SBOM in OCI referrers (#3768) 
Co-authored-by: saso <sasoakira6114@gmail.com>
 2023-03-26 08:27:10 +03:00
Teppei Fukuda
aaf845d02e chore: display the troubleshooting URL for the DB denial error (#3474) 2023-01-23 16:12:00 +02:00
afdesk
fa8a8ba7dc fix(server): use a new db worker for hot updates (#2581) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-07-25 17:26:08 +03:00
Teppei Fukuda
7cecade3a1 feat: add support for WASM modules (#2195) 2022-06-15 15:23:00 +03:00
DmitriyLewen
b7ec642572 feat(db): added insecure skip tls verify to download trivy db (#2140) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2022-05-26 14:54:39 +03:00
Sashi Kumar
02105678ed feat(db): Add dbRepository flag to get advisory database from OCI registry (#1873) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-31 16:09:01 +03:00
Furkan Türkal
5040caefc8 refactor: clarify db update warning messages (#1808) 
Signed-off-by: Furkan <furkan.turkal@trendyol.com>

Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-16 14:35:40 +02:00
Teppei Fukuda
e65274e0ef BREAKING: Trivy DB from GHCR (#1539) 2022-01-06 20:08:40 +02:00
Eng Zer Jun
bbcce9f7b7 refactor: move from io/ioutil to io and os package (#1245) 
The io/ioutil package has been deprecated as of Go 1.16, see
https://golang.org/doc/go1.16#ioutil. This commit replaces the existing
io/ioutil functions with their new definitions in io and os packages.

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2021-09-29 10:17:02 +03:00
洋仔
2e170cd15a Update db.go (#1199) 
fix args name error
 2021-09-19 20:38:22 +03:00
Teppei Fukuda
8b3b5d0290 feat: support plugins (#878) 
* fix(log): set the default logger

* feat: support plugins

* feat(plugin): add run command

* feat(plugin): add uninstall command

* test(plugin): add tests

* chore(ci): pin go version

* chore(ci): disable G204

* refactor: fix lint issues

* feat(plugin): skip downloading installed plugins

* feat: add TRIVY_RUN_AS_PLUGIN

* support Ubuntu 20.10 (#876)

* docs(README): update ubuntu versions (#877)

* add MkDocs implementation (#870)

* mkdocs: add top level nav

* mkdocs: add installation nav

* mkdocs: add quick-start nav

* mkdocs: add examples nav

* mkdocs: add CI nav

* mkdocs: add vuln-detection nav

* mkdocs: add comparison nav

* mkdocs: add usage nav

* mkdocs: add migration nav

* mkdocs: add FAQ nav

* mkdocs: add mkdocs.yml

* mkdocs: add github workflow

* docs: update documents

* fix links

* chore(ci): use ORG_GITHUB_TOKEN

* chore(mkdocs): use mike

* chore(ci): support dev

* chore(ci): documentation test

Co-authored-by: knqyf263 <knqyf263@gmail.com>

* docs: add plugins

* chore: remove stale workflow

* refactor: fix lint issues

Co-authored-by: Huang Huang <mozillazg101@gmail.com>
Co-authored-by: aprp <doelaudi@gmail.com>
 2021-03-10 21:44:08 +02:00
Huang Huang
ca6f196001 Skip downloading DB if a remote DB is not updated (#717) 
* Skip downloading DB if a remote DB is not updated

* Apply suggestions from code review

Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>

* update github.com/aquasecurity/trivy-db version

* fix lint

* Use UTC datetime

* display DownloadedAt info in debug log

* refactor(db): merge isLatestDB into isNewDB

Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2020-10-26 09:07:30 +02:00
rahul2393
793a1aa3c8 Add linter check support (#679) 
* add linter supports

* add only minor version

* use latest version

* Fix println with format issue

* Fix test

* Fix tests

* For slice with unknown length, preallocating the array

* fix code-coverage

* Removed linter rules

* Reverting linter fixes, adding TODO for later

* Ignore linter error for import

* Remove another err var.

* Ignore shadow error

* Fixes

* Fix issue

* Add back goimports local-prefixes

* Update local prefixes

* Removed extra spaces and merge the imports

* more refactoring

* Update photon.go

Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2020-10-20 15:20:04 +03:00
Simarpreet Singh
2ac672a663 Use StoreMetadata from trivy-db (#509) 
* db_test: Remove cruft

Signed-off-by: Simarpreet Singh <simar@linux.com>

* db: Add StoreMetadata from trivy-db.

Signed-off-by: Simarpreet Singh <simar@linux.com>

* mod: Update trivy-db dependency

Signed-off-by: Simarpreet Singh <simar@linux.com>

* mod: Bump trivy-db version

Signed-off-by: Simarpreet Singh <simar@linux.com>

* db: Eliminate metadata.Store

Signed-off-by: Simarpreet Singh <simar@linux.com>

* db: Add a TODO to move things into trivy-db repo

Signed-off-by: Simarpreet Singh <simar@linux.com>
 2020-06-22 14:29:38 -07:00
Teppei Fukuda
ac5f313129 feat(db): store metadata as a file (#464) 
* refactor: wrap errors

* feat(db): add the metadata file

* test(db): re-generate mocks

* fix(app): read metadata from the file in showVersion

* fix: open the database after downloading it

* fix(operation): use UpdateMetadata

* chore(mod): update dependency

* test(integration): fix tests

* fix(conf): rename TRIVY_NONSSL to TRIVY_NON_SSL
 2020-04-15 16:07:42 +03:00
Simarpreet Singh
94eb7cc592 Expose Trivy and VulnDB version through --version (#435) 
* app: Expose Trivy and VulnDB version through --version

Signed-off-by: Simarpreet Singh <simar@linux.com>

* pkg: Use time.Time as value not reference.

Based on: 64db180151

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Use various formatted outputs

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Take value of --cache-dir for cacheDir

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Refactor and test showVersion

Signed-off-by: Simarpreet Singh <simar@linux.com>

* library: lighten names by remove version suffix

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Show types and add parity of table and JSON

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Switch to show using UTC time

Signed-off-by: Simarpreet Singh <simar@linux.com>

* mod: Update to latest trivy-db master.

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Use c.App.Writer for os.Stdout

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Replace table output with docker version style output

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Fix output to show as "Version" for Trivy version.

Signed-off-by: Simarpreet Singh <simar@linux.com>

* app: Move VersionInfo struct out to app.go

Signed-off-by: Simarpreet Singh <simar@linux.com>
 2020-03-20 10:19:44 -07:00
Teppei Fukuda
cee08c38f4 feat(db): show progress when downloading the DB (#317) 
* fix(github): return db size

* fix(github_mock): add size

* feat(indicator): add progress bar

* refactor(config): remove global Quiet

* fix(db): take progress bar as an argument

* fix(progress): inject progress bar
 2019-12-16 19:23:08 +02:00
Teppei Fukuda
74717b888e feat: support client/server mode (#295) 
* chore(app): change dir

* feat(rpc): add a proto file and auto-generated files

* chore(dep): add dependencies

* fix(app): fix import path

* fix(integration): fix import path

* fix(protoc): use enum for severity

* chore(Makefile): add fmt andd protoc

* chore(clang): add .clang-format

* refactor: split functions for client/server (#296)

* refactor(db): split db.Download

* refactor(standalone): create a different package

* refactor(vulnerability): split FillAndFilter

* fix(protoc): use enum for severity

* chore(Makefile): add fmt andd protoc

* chore(clang): add .clang-format

* fix(db): remove an unused variable

* fix(db): expose the github client as an argument of constructor

* refactor(vulnerability): add the detail message

* feat(rpc): add rpc client (#302)

* fix(protoc): use enum for severity

* chore(Makefile): add fmt andd protoc

* chore(clang): add .clang-format

* feat(rpc): convert types

* feat(rpc): add rpc client

* token: Refactor to handle bad headers being set

Signed-off-by: Simarpreet Singh <simar@linux.com>

* feat(rpc): add rpc server (#303)

* feat(rpc): add rpc server

* feat(utils): add CopyFile

* feat(server/config): add config struct

* feat(detector): add detector

* feat(scanner): delegate procedures to detector

* fix(scanner): fix the interface

* test(mock): add mocks

* test(rpc/server): add tests

* test(rpc/ospkg/server): add tests

* tets(os/detector): add tests

* refactor(library): move directories

* chore(dependency): add google/wire

* refactor(library): introduce google/wire

* refactor(ospkg/detector): move directory

* feat(rpc): add eosl

* refactor(ospkg): introduce google/wire

* refactor(wire): bind an interface

* refactor(client): use wire.Struct

* chore(Makefile): fix wire

* test(server): add AssertExpectations

* test(server): add AssertExpectations

* refactor(server): remove debug log

* refactor(error): add more context messages

* test(server): fix error message

* refactor(test): create a constructor of mock

* refactor(config): remove an unused variable

* test(config): add an assertion to test the config struct

* feat(client/server): add sub commands (#304)

* feat(rpc): add rpc server

* feat(utils): add CopyFile

* feat(server/config): add config struct

* feat(detector): add detector

* feat(scanner): delegate procedures to detector

* fix(scanner): fix the interface

* feat(client/server): add sub commands

* merge(server3)

* test(scan): remove an unused mock

* refactor(client): generate the constructor by wire

* fix(cli): change the default port

* fix(server): use auto-generated constructor

* feat(ospkg): return eosl

* test(integration): add integration tests for client/server (#306)

* fix(server): remove unnecessary options

* test(integration): add integration tests for client/server

* fix(server): wrap an error

* fix(server): change the update interval

* fix(server): display the error detail

* test(config): add an assertion to test the config struct

* fix(client): returns an error when failing to initizlie a logger

* test(ospkg/server): add eosl

* Squashed commit of the following:

* test(server): refactor and add tests (#307)

* test(github): create a mock

* test(db): create a mock

* test(server): add tests for DB hot update

* chore(db): add a log message

* refactor(db): introduce google/wire

* refactor(rpc): move directory

* refactor(injector): fix import name

* refactor(import): remove new lines

* fix(server): display the error detail

* fix(server): change the update interval

* fix(server): wrap an error

* test(integration): add integration tests for client/server

* fix(server): remove unnecessary options

* refactor(server): return an error when failing to initialize a logger

* refactor(server): remove unused error

* fix(client/server): fix default port

* chore(README): add client/server

* chore(README): update
 2019-12-13 15:00:11 +02:00
Teppei Fukuda
0106939d30 fix(skip-update): prohibit --skip-update in some situations (#262) 
* fix(skip-update): prohibit --skip-update in some situations

* test(db): add some cases
 2019-11-14 16:19:00 +02:00
knqyf263
c91eb92d7f fix(github): remove authentication 2019-11-12 22:23:36 +02:00
knqyf263
b348dc2b55 test(db): change getMetadata from an slice to an object 2019-11-10 16:40:45 +02:00
knqyf263
51eb0dd362 Merge branch 'remote_db' of ssh://github.com/aquasecurity/trivy into remote_db 2019-11-10 15:46:11 +02:00
Simarpreet Singh
23b26e0b48 db_test: Add a happy path for first time run 
Signed-off-by: Simarpreet Singh <simar@linux.com>
 2019-11-06 11:24:12 -08:00
knqyf263
9efc4214b2 test(db): use require instead of assert 2019-11-06 18:19:13 +02:00
knqyf263
84b759d767 test(db): fix an interface 2019-11-06 18:18:49 +02:00
knqyf263
abac635737 test(db): use require instead of panic 2019-11-06 18:14:50 +02:00
knqyf263
f0ea4be2e0 refactor(db): fix an info message 2019-11-06 18:06:41 +02:00
knqyf263
010a6867f3 refactor(db): add a debug message when skipping DB udpate 2019-11-06 18:04:07 +02:00
knqyf263
ee0d6b1841 refactor(db): initialize Metadata to suppress a warning 2019-11-06 18:01:42 +02:00
knqyf263
0604e363f4 refactor(log): show actual and expected DB version 2019-11-06 17:53:05 +02:00
knqyf263
77d7177627 refactor(log): show CLI version with the error 2019-11-06 17:44:24 +02:00
knqyf263
46c7ff7a83 test(db): add tests 2019-10-31 23:53:46 +02:00
knqyf263
55d5c29f38 feat(db): download a db file from GitHub Release 2019-10-31 12:26:02 +02:00
knqyf263
2921c25c62 refactor(vulnsrc): transfer code to trivy-db 2019-10-31 12:26:02 +02:00
Teppei Fukuda
a12bb8d0e2 fix(db): introduce db schema version (#221) 2019-10-23 16:00:04 +03:00