From 499dfbf36334dc1b8160539f0bd0f2d39c0d3bbbcc6b3b782943356628462373 Mon Sep 17 00:00:00 2001 From: Dirk Mueller Date: Mon, 18 Jul 2022 14:08:59 +0000 Subject: [PATCH] Accepting request 989624 from home:ojkastl_buildservice:Branch_Virtualization_containers update to 0.30.0 OBS-URL: https://build.opensuse.org/request/show/989624 OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/trivy?expand=0&rev=8 --- _service | 2 +- _servicedata | 2 +- trivy-0.29.2.tar.gz | 3 -- trivy-0.30.0.tar.gz | 3 ++ trivy.changes | 70 +++++++++++++++++++++++++++++++++++++++++++++ trivy.spec | 2 +- vendor.tar.gz | 4 +-- 7 files changed, 78 insertions(+), 8 deletions(-) delete mode 100644 trivy-0.29.2.tar.gz create mode 100644 trivy-0.30.0.tar.gz diff --git a/_service b/_service index e3ce044..c041d92 100644 --- a/_service +++ b/_service @@ -2,7 +2,7 @@ https://github.com/aquasecurity/trivy git - v0.29.2 + v0.30.0 @PARENT_TAG@ v(.*) enable diff --git a/_servicedata b/_servicedata index 2516b55..cd1f4b2 100644 --- a/_servicedata +++ b/_servicedata @@ -1,4 +1,4 @@ https://github.com/aquasecurity/trivy - 6b515bc73632e08a2d8d6d1bb9b8bea108c41fbe \ No newline at end of file + 45dae7c2cfbd5c940ef0e3a145301b2d315943f9 \ No newline at end of file diff --git a/trivy-0.29.2.tar.gz b/trivy-0.29.2.tar.gz deleted file mode 100644 index 2c21d5b..0000000 --- a/trivy-0.29.2.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:a9a63237882eb749823fb1b1365c8acdac74a67d4ff6c488c56fdc0873af7585 -size 47310448 diff --git a/trivy-0.30.0.tar.gz b/trivy-0.30.0.tar.gz new file mode 100644 index 0000000..7748178 --- /dev/null +++ b/trivy-0.30.0.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:9fd05f76764054679aa3b9e94585058fe09532a02a2ee3e20122515aabf00762 +size 47636248 diff --git a/trivy.changes b/trivy.changes index 60f33aa..5dcdf69 100644 --- a/trivy.changes +++ b/trivy.changes @@ -1,3 +1,73 @@ +------------------------------------------------------------------- +Sat Jul 16 19:28:03 UTC 2022 - kastl@b1-systems.de + +- Update to version 0.30.0: + * fix: separating multiple licenses from one line in dpkg copyright files (#2508) + * fix: change a capital letter for `plugin uninstall` subcommand (#2519) + * fix: k8s hide empty report when scanning resource (#2517) + * refactor: fix comments (#2516) + * fix: scan vendor dir (#2515) + * feat: Add support for license scanning (#2418) + * chore: add owners for secret scanning (#2485) + * fix: remove dependency-tree flag for image subcommand (#2492) + * fix(k8s): add shorthand for k8s namespace flag (#2495) + * docs: add information about using multiple servers to troubleshooting (#2498) + * ci: add pushing canary build images to registries (#2428) + * chore(deps): bump github.com/open-policy-agent/opa from 0.41.0 to 0.42.0 (#2479) + * feat(dotnet): add support for .Net core .deps.json files (#2487) + * feat(amazon): add support for 2022 version (#2429) + * Type correction bitnami chart (#2415) + * chore(deps): bump github.com/owenrumney/go-sarif/v2 from 2.1.1 to 2.1.2 (#2449) + * chore(deps): bump github.com/aquasecurity/table from 1.5.1 to 1.6.0 (#2446) + * docs: add config file and update CLI references (#2489) + * feat: add support for flag groups (#2488) + * refactor: move from urfave/cli to spf13/cobra (#2458) + * fix: Fix secrets output not containing file/lines (#2467) + * fix: clear output with modules (#2478) + * chore(deps): bump github.com/mailru/easyjson from 0.7.6 to 0.7.7 (#2448) + * docs(cbl): distroless 1.0 supported (#2473) + * fix: Fix example dockerfile rego policy (#2460) + * fix(config): add helm to list of config analyzers (#2457) + * feat: k8s resouces scan (#2395) + * feat(sbom): add cyclonedx sbom scan (#2203) + * chore(deps): bump wazero to latest main (#2436) + * chore(deps): bump github.com/stretchr/testify from 1.7.3 to 1.8.0 (#2444) + * chore(deps): bump github.com/alicebob/miniredis/v2 from 2.21.0 to 2.22.0 (#2445) + * chore(deps): bump sigstore/cosign-installer from 2.3.0 to 2.4.1 (#2442) + * chore(deps): bump actions/setup-python from 3 to 4 (#2441) + * chore(deps): bump github.com/Azure/azure-sdk-for-go (#2450) + * docs: remove links to removed content (#2431) + * ci: added rpm build for rhel 9 (#2437) + * fix(secret): remove space from asymmetric private key (#2434) + * chore(deps): bump actions/cache from 3.0.2 to 3.0.4 (#2440) + * chore(deps): bump helm/kind-action from 1.2.0 to 1.3.0 (#2439) + * chore(deps): bump golang from 1.18.2 to 1.18.3 (#2438) + * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.25 to 1.44.46 (#2447) + * test(integration): fix golden files for debian 9 (#2435) + * fix(cli): fix version string in docs link when secret scanning is enabled (#2422) + * refactor: move CycloneDX marshaling (#2420) + * docs(nodejs): add docs about pnpm support (#2423) + * docs: improve k8s usage documentation (#2425) + * feat: Make secrets scanning output consistant (#2410) + * ci: create canary build after main branch changes (#1638) + * fix(misconf): skip broken scans (#2396) + * feat(nodejs): add pnpm support (#2414) + * fix: Fix false positive for use of COS images (#2413) + * eliminate nerdctl dependency (#2412) + * Add EOL date for SUSE SLES 15.3, 15.4 and OpenSUSE 15.4 (#2403) + * fix(go): no cast to lowercase go package names (#2401) + * BREAKING(sbom): change 'trivy sbom' to scan SBOM (#2408) + * fix(server): hot update the db from custom repository (#2406) + * feat: added license parser for dpkg (#2381) + * chore(helm): bump appVersion to latest release (#2397) + * fix(misconf): Update defsec (v0.68.5) to fix docker rego duplicate key (#2400) + * feat: extract stripe publishable and secret keys (#2392) + * feat: rbac support k8s sub-command (#2339) + * feat(ruby): drop platform strings from dependency versions bundled with bundler v2 (#2390) + * docs: Updating README with new CLI command (#2359) + * fix(misconf): Update defsec to v0.68.4 to resolve CF detection bug (#2383) + * chore: add integration label and merge security label (#2316) + ------------------------------------------------------------------- Fri Jul 08 07:31:17 UTC 2022 - dmueller@suse.com diff --git a/trivy.spec b/trivy.spec index 710c6fe..f885fd8 100644 --- a/trivy.spec +++ b/trivy.spec @@ -19,7 +19,7 @@ %global goipath github.com/aquasecurity/trivy Name: trivy -Version: 0.29.2 +Version: 0.30.0 Release: 0 Summary: A Simple and Comprehensive Vulnerability Scanner for Containers License: Apache-2.0 diff --git a/vendor.tar.gz b/vendor.tar.gz index 3656719..66ad1fb 100644 --- a/vendor.tar.gz +++ b/vendor.tar.gz @@ -1,3 +1,3 @@ version https://git-lfs.github.com/spec/v1 -oid sha256:0759b15d1420f0dcef0b13112d03ecc4b5cce3d7735a4a3d0c157985b36b15e2 -size 51694471 +oid sha256:d892599b7e0a2f3e0c43b0bbd733fccd8a59fc593317c71c86c01b287180ed43 +size 70806172