admin/aquasecurity-trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2026-01-31 13:53:14 +08:00
Code Issues Packages Projects Releases Wiki Activity
3,914 Commits 28 Branches 179 Tags
fe7d20a31c02b7ce61d85d264883831208132002
Commit Graph

63 Commits

Author SHA1 Message Date
DmitriyLewen
809db46231 fix(java): add hash of GAV+root pom file path for pkgID for packages from pom.xml files (#9880) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2026-01-15 07:31:21 +00:00
DmitriyLewen
11dd3fac38 fix(license): normalize licenses for PostAnalyzers (#9941) 2025-12-29 06:27:04 +00:00
Teppei Fukuda
93915dc97a refactor: add xslices.Map and replace lo.Map usages (#9984) 2025-12-26 08:07:03 +00:00
Yuta Tokoi
012f3d7535 feat(license): use separate SPDX ids to ignore SPDX expressions (#9087) 
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2025-11-01 08:31:59 +00:00
Nikita Pivkin
c638fc646c feat: allow ignoring findings by type in Rego (#9578) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-10-06 18:17:23 +00:00
Teppei Fukuda
d2d0ec2b6d chore: add modernize tool integration for code modernization (#9251) 
Co-authored-by: knqyf263 <knqyf263@users.noreply.github.com>
 2025-07-29 07:13:54 +00:00
Nikita Pivkin
19e2c10e89 refactor(misconf): use OPA v1 (#8518) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
 2025-03-11 00:36:13 +00:00
Teppei Fukuda
529957eac1 feat: replace TinyGo with standard Go for WebAssembly modules (#8496) 2025-03-07 10:10:15 +00:00
Teppei Fukuda
fe09410ed4 chore: replace deprecated tenv linter with usetesting (#8504) 2025-03-06 12:26:20 +00:00
Matthieu MOREL
715575d731 chore: use require.ErrorContains when possible (#8291) 
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
 2025-01-27 06:47:29 +00:00
simar7
4cfb2a97b2 fix(cli): Handle empty ignore files more gracefully (#7962) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2024-11-26 06:00:46 +00:00
Rutam Prita Mishra
e872ec006c fix(go): Do not trim v prefix from versions in Go Mod Analyzer (#7733) 
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2024-10-31 06:03:22 +00:00
simar7
c70b6fa166 refactor(misconf): Deprecate EXCEPTIONS for misconfiguration scanning (#7776) 
Signed-off-by: Simar <simar@linux.com>
 2024-10-29 22:29:42 +00:00
Teppei Fukuda
88ba46047c feat(vex): VEX Repository support (#7206) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2024-07-25 12:18:37 +00:00
DmitriyLewen
1f5f348958 feat: add log.FilePath() function for logger (#7080) 2024-07-02 09:48:20 +00:00
Teppei Fukuda
983ac15f22 ci: add depguard (#6963) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-06-20 02:48:08 +00:00
Nikita Pivkin
ebb123f37f chore: replace interface{} with any (#6751) 2024-05-27 02:53:19 +00:00
Matthieu MOREL
48bdc6e734 ci(deps): fix gci and gofmt in ".*_test.go$" (#6721) 
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
 2024-05-22 02:55:16 +00:00
Teppei Fukuda
9515695d45 feat(vex): support non-root components for products in OpenVEX (#6728) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2024-05-21 10:00:51 +00:00
Kristina Trotsko
fa3cf993ea feat(report): Include licenses and secrets filtered by rego to ModifiedFindings (#6483) 2024-05-14 09:34:31 +00:00
simar7
37da98df45 feat(misconf): Use updated terminology for misconfiguration checks (#6476) 
Signed-off-by: Simar <simar@linux.com>
 2024-05-02 18:16:17 +00:00
Teppei Fukuda
94d6e8ced6 refactor: replace zap with slog (#6466) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: Nikita Pivkin <nikita.pivkin@smartforce.io>
Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>
 2024-04-11 18:59:09 +00:00
Nikita Pivkin
09e37b7c67 feat(aws): apply filter options to result (#6367) 2024-03-29 01:12:23 +00:00
Teppei Fukuda
c4022d61b3 feat(vex): consider root component for relationships (#6313) 
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2024-03-19 00:51:18 +00:00
Teppei Fukuda
cd3e4bcac2 feat(vuln): ignore vulnerabilities by PURL (#6178) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-02-22 09:55:13 +00:00
Kristina Trotsko
c6844a73f1 feat(report): support for filtering licenses and secrets via rego policy files (#6004) 2024-02-16 08:39:03 +00:00
Teppei Fukuda
3c1601b6cb feat(vuln): show suppressed vulnerabilities in table (#6084) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2024-02-13 12:35:06 +00:00
Teppei Fukuda
d0c81e23c4 feat(vex): add PURL matching for CSAF VEX (#5890) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-01-10 06:37:19 +00:00
Teppei Fukuda
da597c479c refactor: propagate time through context values (#5858) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2024-01-03 09:43:45 +00:00
Juan Ariza Toledano
1f0d6290c3 feat(vuln): include pkg identifier on detected vulnerabilities (#5439) 
Signed-off-by: juan131 <jariza@vmware.com>
Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
Co-authored-by: Nikita Pivkin <nikita.pivkin@smartforce.io>
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2023-12-27 07:54:56 +00:00
simar7
01c98d1516 feat(misconf): Support --ignore-policy in config scans (#5359) 
Signed-off-by: Simar <simar@linux.com>
 2023-10-23 07:32:08 +00:00
Teppei Fukuda
3be5e6b242 chore: enable go-critic (#5302) 
* chore: enable gocritic

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* refactor: fix lint issues

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* test: return true for latest versions

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* chore(lint): enforce map and slice styles

Signed-off-by: knqyf263 <knqyf263@gmail.com>

---------

Signed-off-by: knqyf263 <knqyf263@gmail.com>
 2023-10-02 08:33:21 +00:00
Teppei Fukuda
44656f2853 refactor: use defined types (#5225) 
* refactor: replace string with defined types

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* chore: add gci

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* fix(purl): not confuse trivy type with purl type

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* test: fix cyclonedx fixture

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* fix(template): cast TargetType to string

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* chore: bump TinyGo to v0.29.0

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* test: change license to licence

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* use `analyzer.TypeGoMod` for gomod analyzer

* ignore `licence` for misspell linter

---------

Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2023-09-22 10:44:39 +00:00
Teppei Fukuda
9628b1cbf3 feat: add support for .trivyignore.yaml (#5070) 
* feat: add support for .trivyignore.yaml

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* add test for trivyignore.yaml

* Add doublestar support

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* go mod tidy

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* update docs

* test: fix

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* fix: load .trivyignore once

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* feat: add a debug log

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* docs: add a table for fields

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* fix: skip empty results

Signed-off-by: knqyf263 <knqyf263@gmail.com>

* revert the change

Signed-off-by: knqyf263 <knqyf263@gmail.com>

---------

Signed-off-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2023-08-31 11:53:37 +00:00
Teppei Fukuda
49fdd584ba feat: PURL matching with qualifiers in OpenVEX (#5061) 
* feat: PURL match in OpenVEX

* test: fix fixture

* Update docs/docs/supply-chain/vex.md

Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>

* docs: add a comment about overriding statements

---------

Co-authored-by: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
 2023-08-30 07:48:32 +00:00
Teppei Fukuda
232ba823e1 feat(vuln): support vulnerability status (#4867) 
* feat: support vulnerability status

* feat: show status in table

* don't add `fixed` status in debian/redhat

* update test golden files

* add Status in rpc

* update docs

* update ignore-status example

* add ignore-status in integration test

* docs: add the explanation for statuses

---------

Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2023-07-26 11:55:03 +00:00
Teppei Fukuda
11a5b91a1a feat(sbom): add VEX support (#4053) 2023-04-27 10:21:06 +03:00
lsoumille
68eda79357 feat(secret): Use .trivyignore for filtering secret scanning result (#3312) 2022-12-18 11:58:34 +02:00
gmetaxo
cfabdf9138 fix(vuln): include duplicate vulnerabilities with different package paths in the final report (#3275) 
* Add test for filter with both duplicates and different package paths

* Add package path in key of uniqVulns map

* Add package path to the sorting logic
 2022-12-15 19:21:54 +02:00
Liam Galvin
b22e37e0c6 chore: Switch github.com/liamg dependencies to github.com/aquasecurity (#3069) 2022-10-25 11:17:47 +03:00
afdesk
8bc56bf2fc feat(misconf): skipping misconfigurations by AVD ID (#2743) 2022-08-22 11:06:04 +03:00
Owen Rumney
a3a66df007 feat: Add support for license scanning (#2418) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
 2022-07-13 22:36:41 +03:00
Liam Galvin
094db23a03 refactor: Fix fanal import paths and remove dotfiles 2022-06-20 09:43:33 +01:00
maltemorgenstern
3d2fc78852 feat: allow expiration date for .trivyignore entries (#2332) 
Co-authored-by: Teppei Fukuda <knqyf263@gmail.com>
 2022-06-16 13:04:19 +03:00
Teppei Fukuda
7cecade3a1 feat: add support for WASM modules (#2195) 2022-06-15 15:23:00 +03:00
Teppei Fukuda
5f047f97db feat: add secret scanning (#1901) 
Co-authored-by: VaismanLior <97836016+VaismanLior@users.noreply.github.com>
Co-authored-by: AMF <work@afdesk.com>
 2022-04-22 17:08:18 +03:00
Masahiro331
7a148089ec feat(cyclonedx): add vulnerabilities (#1832) 
Co-authored-by: knqyf263 <knqyf263@gmail.com>
 2022-03-22 20:22:55 +02:00
Teppei Fukuda
88ebc07504 chore: bump up Go to 1.18 (#1862) 2022-03-21 16:38:54 +02:00
Teppei Fukuda
11f4f81123 refactor: move result structs under types (#1696) 2022-02-09 19:31:12 +02:00
Teppei Fukuda
8d5882be03 refactor: migrate to prefixed buckets (#1644) 2022-01-31 10:05:38 +02:00