From 1c04f09b2d2f7c5be03fdfb4f528b64d397e8c1e0bc0ba7138288f2caac3c3c6 Mon Sep 17 00:00:00 2001
From: Dirk Mueller <dmueller@suse.com>
Date: Sun, 16 Apr 2023 18:11:29 +0000
Subject: [PATCH] - Update to version 0.40.0:   * feat(flag): Support globstar
 for `--skip-files` and `--skip-directories` (#4026)   * chore(deps): bump
 actions/stale from 7 to 8 (#3955)   * fix: return insecure option to download
 javadb (#4064)   * fix(nodejs): don't stop parsing when unsupported yarn.lock
 protocols are found (#4052)   * ci: add gpg signing for RPM packages (#4056) 
  * fix(k8s): current context title (#4055)   * fix(k8s): quit support on k8s
 progress bar (#4021)   * chore: add a note about Dockerfile.canary (#4050)  
 * ci: fix path to canary binaries (#4045)   * fix(vuln): report architecture
 for debian packages (#4032)   * feat: add support for Chainguard's commercial
 distro (#3641)   * ci: bump goreleaser for Github Action from 1.4.1 to 1.16.2
 (#3979)   * fix(vuln): fix error message for remote scanners (#4031)   *
 feat(report): add image metadata to SARIF (#4020)   * docs: fix broken cache
 link on Installation page (#3999)   * fix: lock downloading policies and
 database (#4017)   * fix: avoid concurrent access to the global map (#4014)  
 * feat(rust): add Cargo.lock v3 support (#4012)   * feat: auth support oci
 download server subcommand (#4008)   * chore(deps): bump
 github.com/docker/docker (#4009)   * chore: install.sh support for armv7
 (#3985)   * chore(deps): bump github.com/Azure/go-autorest/autorest/adal
 (#3961)

OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/trivy?expand=0&rev=56
---
 _service             |  2 +-
 _servicedata         |  2 +-
 trivy-0.39.1.tar.zst |  3 ---
 trivy-0.40.0.tar.zst |  3 +++
 trivy.changes        | 27 +++++++++++++++++++++++++++
 trivy.spec           |  2 +-
 vendor.tar.zst       |  4 ++--
 7 files changed, 35 insertions(+), 8 deletions(-)
 delete mode 100644 trivy-0.39.1.tar.zst
 create mode 100644 trivy-0.40.0.tar.zst

diff --git a/_service b/_service
index f3d49a9..147b6ad 100644
--- a/_service
+++ b/_service
@@ -2,7 +2,7 @@
   <service name="tar_scm" mode="disabled">
     <param name="url">https://github.com/aquasecurity/trivy</param>
     <param name="scm">git</param>
-    <param name="revision">v0.39.1</param>
+    <param name="revision">v0.40.0</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="versionrewrite-pattern">v(.*)</param>
     <param name="changesgenerate">enable</param>
diff --git a/_servicedata b/_servicedata
index be464ed..9c9358e 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/aquasecurity/trivy</param>
-              <param name="changesrevision">a119ef86ea28b0cbd6ad7708ac1ff64a89bd8034</param></service></servicedata>
\ No newline at end of file
+              <param name="changesrevision">b43b19ba54cbf30adfaf98febccef033701a1df3</param></service></servicedata>
\ No newline at end of file
diff --git a/trivy-0.39.1.tar.zst b/trivy-0.39.1.tar.zst
deleted file mode 100644
index 3156789..0000000
--- a/trivy-0.39.1.tar.zst
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:7b3fa84d04e1768092c499edadbd6355192fb270d4b47ad0b6fe98a97daebe49
-size 76724367
diff --git a/trivy-0.40.0.tar.zst b/trivy-0.40.0.tar.zst
new file mode 100644
index 0000000..7789b61
--- /dev/null
+++ b/trivy-0.40.0.tar.zst
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:1438d1d21cc67ed45d82f725540831ca24f9fc119845cfe68eb2f87cb82b49e1
+size 76730751
diff --git a/trivy.changes b/trivy.changes
index 038d1f7..4457f8f 100644
--- a/trivy.changes
+++ b/trivy.changes
@@ -1,3 +1,30 @@
+-------------------------------------------------------------------
+Sun Apr 16 18:05:08 UTC 2023 - dmueller@suse.com
+
+- Update to version 0.40.0:
+  * feat(flag): Support globstar for `--skip-files` and `--skip-directories` (#4026)
+  * chore(deps): bump actions/stale from 7 to 8 (#3955)
+  * fix: return insecure option to download javadb (#4064)
+  * fix(nodejs): don't stop parsing when unsupported yarn.lock protocols are found (#4052)
+  * ci: add gpg signing for RPM packages (#4056)
+  * fix(k8s): current context title (#4055)
+  * fix(k8s): quit support on k8s progress bar (#4021)
+  * chore: add a note about Dockerfile.canary (#4050)
+  * ci: fix path to canary binaries (#4045)
+  * fix(vuln): report architecture for debian packages (#4032)
+  * feat: add support for Chainguard's commercial distro (#3641)
+  * ci: bump goreleaser for Github Action from 1.4.1 to 1.16.2 (#3979)
+  * fix(vuln): fix error message for remote scanners (#4031)
+  * feat(report): add image metadata to SARIF (#4020)
+  * docs: fix broken cache link on Installation page (#3999)
+  * fix: lock downloading policies and database (#4017)
+  * fix: avoid concurrent access to the global map (#4014)
+  * feat(rust): add Cargo.lock v3 support (#4012)
+  * feat: auth support oci download server subcommand (#4008)
+  * chore(deps): bump github.com/docker/docker (#4009)
+  * chore: install.sh support for armv7 (#3985)
+  * chore(deps): bump github.com/Azure/go-autorest/autorest/adal (#3961)
+
 -------------------------------------------------------------------
 Thu Apr 13 08:10:58 UTC 2023 - dmueller@suse.com
 
diff --git a/trivy.spec b/trivy.spec
index c8fbb1e..f83c12c 100644
--- a/trivy.spec
+++ b/trivy.spec
@@ -19,7 +19,7 @@
 
 %global goipath github.com/aquasecurity/trivy
 Name:           trivy
-Version:        0.39.1
+Version:        0.40.0
 Release:        0
 Summary:        A Simple and Comprehensive Vulnerability Scanner for Containers
 License:        Apache-2.0
diff --git a/vendor.tar.zst b/vendor.tar.zst
index 0be9da2..6bf1fab 100644
--- a/vendor.tar.zst
+++ b/vendor.tar.zst
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:938e8a779283a9f285c6bb35eff641d07386607302a26707b9b822a1feefb1c5
-size 18602937
+oid sha256:02729eaeacb2c7766ab96065aaf3c12f78cae80f8c24cea2579a17adbdd7026f
+size 18644113