aquasecurity-trivy

mirror of https://github.com/aquasecurity/trivy.git synced 2026-01-31 13:53:14 +08:00

Author	SHA1	Message	Date
Teppei Fukuda	74819bf457	feat(vuln): skip vulnerability scanning for third-party packages in Debian/Ubuntu (#9932 )	2025-12-22 10:56:30 +00:00
afdesk	5f9b695170	test(k8s): update k8s integrtion test (#9725 )	2025-11-24 16:39:22 +00:00
Teppei Fukuda	cbad9ca3a8	feat(report): add fingerprint generation for vulnerabilities (#9794 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2025-11-17 07:23:43 +00:00
Teppei Fukuda	6fb3fde916	feat(report): switch ReportID from UUIDv4 to UUIDv7 (#9749 )	2025-11-05 09:42:14 +00:00
Alex Lutz	18c0ee86f3	feat(dotnet): add dependency graph support for .deps.json files (#9726 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2025-11-01 05:54:46 +00:00
Teppei Fukuda	d020f2690e	feat(report): add image reference to report metadata (#9729 )	2025-10-31 07:26:39 +00:00
Teppei Fukuda	758f271040	feat: include registry and repository in artifact ID calculation (#9689 ) Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>	2025-10-28 09:44:32 +00:00
Teppei Fukuda	a6010c3eda	test: improve golden file management in integration tests (#9699 )	2025-10-24 07:49:29 +00:00
Teppei Fukuda	a9a3031675	feat(image): add RepoTags support for Docker archives (#9690 ) Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>	2025-10-22 06:50:13 +00:00
Nikita Pivkin	197c9e1dce	feat(misconf): include map key in manifest snippet for diagnostics (#9681 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-10-21 18:24:11 +00:00
Nikita Pivkin	263aee07a3	test: update golden files for TestRepository* integration tests (#9684 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-10-20 19:12:08 +00:00
Teppei Fukuda	fc976bea48	feat: add ReportID field to scan reports (#9670 ) Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>	2025-10-17 10:31:22 +00:00
Teppei Fukuda	84a7d9a5d6	feat: add ArtifactID field to uniquely identify scan targets (#9663 ) Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>	2025-10-15 07:04:41 +00:00
afdesk	c0c7a6bf1b	fix(k8s): disable parallel traversal with fs cache for k8s images (#9534 )	2025-09-30 01:44:51 +00:00
Teppei Fukuda	aff03ebab2	feat(cyclonedx): preserve SBOM structure when scanning SBOM files with vulnerability updates (#9439 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2025-09-20 14:26:53 +00:00
DmitriyLewen	1ff9ac7948	fix(vuln): compare `nuget` package names in lower case (#9456 )	2025-09-15 07:21:06 +00:00
Teppei Fukuda	5a5e0972c7	feat(secret): implement streaming secret scanner with byte offset tracking (#9264 ) Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>	2025-08-01 08:17:54 +00:00
Nikita Pivkin	c4003b2968	test(misconf): move terraform scan tests to integration tests (#9271 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-07-31 06:36:19 +00:00
Teppei Fukuda	f4b2cf10e9	feat(repo): add git repository metadata to reports (#9252 ) Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2025-07-29 11:49:58 +00:00
Stepan	60723e6cfc	feat(report): add CVSS vectors in sarif report (#9157 )	2025-07-14 09:22:56 +00:00
DmitriyLewen	f224de3e39	fix: migrate from `.list` to `.md5sums` files for `dpkg` (#9131 )	2025-07-04 08:33:46 +00:00
DmitriyLewen	143da88dd8	fix(sbom): use correct field for licenses in CycloneDX reports (#9057 )	2025-07-01 12:28:33 +00:00
K	41d0f949c8	feat(sbom): add manufacturer field to CycloneDX tools metadata (#9019 ) Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2025-06-27 07:33:58 +00:00
Nikita Pivkin	7e9a54cd6b	fix(misconf): use argument value in WithIncludeDeprecatedChecks (#8942 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-05-29 16:35:33 +00:00
simar7	78e3304bbe	chore(deps): Bump trivy-checks (#8934 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-05-29 12:37:47 +00:00
DmitriyLewen	22f040f947	fix(julia): add `Relationship` field support (#8939 )	2025-05-29 11:26:55 +00:00
Teppei Fukuda	104bbc18ea	feat(alpine): add maintainer field extraction for APK packages (#8930 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2025-05-29 10:47:33 +00:00
simar7	3b2a3976ac	feat(misconf): Add support for `Minimum Trivy Version` (#8880 ) Signed-off-by: Simar <simar@linux.com> Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-05-28 21:22:21 +00:00
Ashwani Kumar Kamal	7ca656d54b	feat(nodejs): add a bun.lock analyzer (#8897 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2025-05-28 07:14:54 +00:00
DmitriyLewen	bf4cd4f2d2	feat(nodejs): add root and workspace for `yarn` packages (#8535 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2025-04-30 14:49:49 +00:00
simar7	573f35c810	chore(deps): Update trivy-checks (#8798 )	2025-04-30 06:37:33 +00:00
DmitriyLewen	a95cab0eab	feat(image): save layers metadata into report (#8394 ) Co-authored-by: knqyf263 <knqyf263@gmail.com>	2025-04-23 16:31:43 +00:00
DmitriyLewen	93efe0789e	feat(rust): add root and workspace relationships/package for `cargo` lock files (#8676 )	2025-04-14 08:40:39 +00:00
simar7	c76764ef5d	chore(deps): Bump trivy-checks (#8619 )	2025-03-27 07:11:45 +00:00
Teppei Fukuda	dd54f80d3f	feat: add report summary table (#8177 ) Signed-off-by: knqyf263 <knqyf263@gmail.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io> Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2025-03-04 09:26:06 +00:00
DmitriyLewen	d464807321	feat: add `--vuln-severity-source` flag (#8269 )	2025-03-03 10:59:30 +00:00
simar7	09cdae6639	chore(deps): Bump trivy-checks to v1.7.1 (#8467 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-03-03 06:03:16 +00:00
Itay Shakury	49456ba841	fix: update all documentation links (#8045 ) Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>	2025-02-26 10:41:46 +00:00
Teppei Fukuda	10b812710b	test: replace mock with memory cache and fix non-deterministic tests (#8410 )	2025-02-18 05:56:49 +00:00
simar7	0031a38eb7	chore(deps): Bump trivy-checks (#8310 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io> Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>	2025-01-30 07:25:43 +00:00
afdesk	db9e57a34e	feat(k8s): improve artifact selections for specific namespaces (#8248 ) Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>	2025-01-29 08:11:19 +00:00
Teppei Fukuda	eafd810d7c	fix(fs): fix cache key generation to use UUID (#8275 ) Signed-off-by: knqyf263 <knqyf263@gmail.com>	2025-01-23 07:34:20 +00:00
DmitriyLewen	7558df7c22	fix(sbom): use root package for `unknown` dependencies (if exists) (#8104 )	2024-12-23 06:14:57 +00:00
Nikita Pivkin	c4a4a5fa97	feat(python): add support for uv (#8080 ) Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>	2024-12-19 05:59:30 +00:00
Fabrizio Sestito	f9fceb58bf	fix(sbom): scan results of SBOMs generated from container images are missing layers (#7635 ) Signed-off-by: Fabrizio Sestito <fabrizio.sestito@suse.com> Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>	2024-12-11 16:39:06 +00:00
DmitriyLewen	90f1d8d78a	fix(oracle): add architectures support for advisories (#4809 )	2024-12-09 11:43:40 +00:00
DmitriyLewen	d622ca2b1f	feat: add `workspaceRelationship` (#7889 )	2024-11-29 04:49:41 +00:00
santhosh1729	461a68afd6	fix(sbom): Fixes for Programming Language Vulnerabilities and SBOM Package Maintainer Details (#7871 )	2024-11-21 07:56:05 +00:00
Jose D. Gomez R.	45d3b40044	feat(suse): Align SUSE/OpenSUSE OS Identifiers (#7965 ) Signed-off-by: Jose D. Gomez R <jose.gomez@suse.com>	2024-11-21 06:19:53 +00:00
DmitriyLewen	b9b383eb27	feat(oracle): add `flavors` support (#7858 )	2024-11-20 10:25:30 +00:00

1 2 3 4 5 ...

305 Commits