v0.42.1 #30
DmitriyLewen
announced in
Announcements
v0.42.1
#30
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Changelog
environment.yaml
files (feat: add supportenvironment.yaml
files aquasecurity/trivy#6569)kinds/namespaces
and includekinds/namespaces
(BREAKING: support excludekinds/namespaces
and includekinds/namespaces
aquasecurity/trivy#6323)Go
cache forreusable-release.yaml
(ci: disableGo
cache forreusable-release.yaml
aquasecurity/trivy#6572)--show-suppressed
is available in table (docs: mention--show-suppressed
is available in table aquasecurity/trivy#6571)pom.xml
file snapshot artifacts from remote repositories (fix(java): update logic to detectpom.xml
file snapshot artifacts from remote repositories aquasecurity/trivy#6412)DedicatedMasterEnabled
parsing issue (fix(cloudformation): resolveDedicatedMasterEnabled
parsing issue aquasecurity/trivy#6439)Indirect
,Dev
,ExternalReferences
fields for same deps frompackage-lock.json
files v2 or later (fix(nodejs): mergeIndirect
,Dev
,ExternalReferences
fields for same deps frompackage-lock.json
files v2 or later aquasecurity/trivy#6356)fs
/repo
modes (docs: add info about support for package license detection infs
/repo
modes aquasecurity/trivy#6381)workspaces
frompackage.json
as an object (fix(nodejs): add support for parsingworkspaces
frompackage.json
as an object aquasecurity/trivy#6231)0600
perms for tmp files for post analyzers (fix: use0600
perms for tmp files for post analyzers aquasecurity/trivy#6386)pom.xml
files once (fix(java): parse modules frompom.xml
files once aquasecurity/trivy#6312)Packages
in client/server mode (fix(server): add Locations forPackages
in client/server mode aquasecurity/trivy#6366)CreationInfo
to nil when detecting SPDX created using Trivy (fix(sbom): add check forCreationInfo
to nil when detecting SPDX created using Trivy aquasecurity/trivy#6346).vulnerabilities[].identifiers[].url
whengitlab.tpl
is used (fix(report): don't include empty strings in.vulnerabilities[].identifiers[].url
whengitlab.tpl
is used aquasecurity/trivy#6348)trivy-db
andtrivy-java-db
registries by default (fix(db): use schema version as tag only fortrivy-db
andtrivy-java-db
registries by default aquasecurity/trivy#6219)package.json
(fix(nodejs): add name validation for package name frompackage.json
aquasecurity/trivy#6268)maven-invoker-plugin
integration tests pom.xml files asDev
(feat(java): mark dependencies frommaven-invoker-plugin
integration tests pom.xml files asDev
aquasecurity/trivy#6213)Test
job (ci: add maximize-build-space forTest
job aquasecurity/trivy#6221)source_location
ingithub
report when scanning an image (refactor(report): Replacingsource_location
ingithub
report when scanning an image aquasecurity/trivy#5999)pom.properties
files fromjars
(fix(java): add only valid libs frompom.properties
files fromjars
aquasecurity/trivy#6164)path
to filter licenses using.trivyignore.yaml
file (docs(report): add remark aboutpath
to filter licenses using.trivyignore.yaml
file aquasecurity/trivy#6145)gradle
files (feat(java): add dependency location support forgradle
files aquasecurity/trivy#6083)user
fromConfig.User
(fix(misconf): getuser
fromConfig.User
aquasecurity/trivy#6070)BomRef
when matchingPkgIdentifier
(fix: check unescapedBomRef
when matchingPkgIdentifier
aquasecurity/trivy#6025)root-reserve-mb
size formaximize-build-space
(ci: reduceroot-reserve-mb
size formaximize-build-space
aquasecurity/trivy#6064)pnpm-lock.yaml
files (fix(nodejs): add local packages support forpnpm-lock.yaml
files aquasecurity/trivy#6034)TestDockerEngine
(test: fix flakyTestDockerEngine
aquasecurity/trivy#6054)AWS_REGION
env for secrets inasff
template (fix(report): useAWS_REGION
env for secrets inasff
template aquasecurity/trivy#6011)--vex
for all targets (feat(vuln): enable--vex
for all targets aquasecurity/trivy#5992)metadata.tools
struct for CycloneDX (refactor(sbom): use newmetadata.tools
struct for CycloneDX aquasecurity/trivy#5981)amzn
in src (fix(amazon): save system files for pkgs containingamzn
in src aquasecurity/trivy#5951)--qps
and--burst
flags aquasecurity/trivy#5910)group
field for pom.xml and nodejs files for CycloneDX reports (fix(sbom): usegroup
field for pom.xml and nodejs files for CycloneDX reports aquasecurity/trivy#5922)jar
files (fix(java): check if a version exists when determining GAV by file name forjar
files aquasecurity/trivy#5630)AWS Secret Access Key
must include only secrets withaws
text. (fix(secret):AWS Secret Access Key
must include only secrets withaws
text. aquasecurity/trivy#5901)This discussion was created from the release v0.42.1.
Beta Was this translation helpful? Give feedback.
All reactions