From 12831ad36ef88ee07dbba9c23994f1eb5019bf9d Mon Sep 17 00:00:00 2001
From: Renovate Bot <renovate-bot@alexlebens.net>
Date: Sat, 5 Jul 2025 04:54:50 +0000
Subject: [PATCH] Update mirror.gcr.io/aquasec/trivy Docker tag to v0.64.1
 (#812)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [mirror.gcr.io/aquasec/trivy](https://www.aquasec.com/products/trivy/) ([source](https://github.com/aquasecurity/trivy)) | minor | `0.63.0` -> `0.64.1` |

---

### Release Notes

<details>
<summary>aquasecurity/trivy (mirror.gcr.io/aquasec/trivy)</summary>

### [`v0.64.1`](https://github.com/aquasecurity/trivy/releases/tag/v0.64.1)

[Compare Source](https://github.com/aquasecurity/trivy/compare/v0.64.0...v0.64.1)

#### Changelog

- [`86ee3c1`](https://github.com/aquasecurity/trivy/commit/86ee3c1176d4707536914dfa65ac8eca452e14cd) release: v0.64.1 \[release/v0.64] ([#&#8203;9122](https://github.com/aquasecurity/trivy/issues/9122))
- [`4e12722`](https://github.com/aquasecurity/trivy/commit/4e1272283a643bfca2d7231d286006219715fada) fix(misconf): skip rewriting expr if attr is nil \[backport: release/v0.64] ([#&#8203;9127](https://github.com/aquasecurity/trivy/issues/9127))
- [`9a7d384`](https://github.com/aquasecurity/trivy/commit/9a7d38432cf00f00970259e5ac3edd060e00ccff) fix(cli): Add more non-sensitive flags to telemetry \[backport: release/v0.64] ([#&#8203;9124](https://github.com/aquasecurity/trivy/issues/9124))
- [`53adfba`](https://github.com/aquasecurity/trivy/commit/53adfba3c25664b01e3a36fdec334b39b53c07f1) fix(rootio): check full version to detect `root.io` packages \[backport: release/v0.64] ([#&#8203;9120](https://github.com/aquasecurity/trivy/issues/9120))
- [`8cf1bf9`](https://github.com/aquasecurity/trivy/commit/8cf1bf9f6f86936ee7dcd29e0d1cd1ec106e28f6) fix(alma): parse epochs from rpmqa file \[backport: release/v0.64] ([#&#8203;9119](https://github.com/aquasecurity/trivy/issues/9119))

### [`v0.64.0`](https://github.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0640-2025-06-30)

[Compare Source](https://github.com/aquasecurity/trivy/compare/v0.63.0...v0.64.0)

##### Features

- **cli:** add version constraints to annoucements ([#&#8203;9023](https://github.com/aquasecurity/trivy/issues/9023)) ([19efa9f](https://github.com/aquasecurity/trivy/commit/19efa9fd372242d2ec582a248e9e6573d2caef00))
- **java:** dereference all maven settings.xml env placeholders ([#&#8203;9024](https://github.com/aquasecurity/trivy/issues/9024)) ([5aade69](https://github.com/aquasecurity/trivy/commit/5aade698c71450badf8db028be61e12ec85c6248))
- **misconf:** add OpenTofu file extension support ([#&#8203;8747](https://github.com/aquasecurity/trivy/issues/8747)) ([57801d0](https://github.com/aquasecurity/trivy/commit/57801d0324384d990889ba39d856c881e5b8b070))
- **misconf:** normalize CreatedBy for buildah and legacy docker builder ([#&#8203;8953](https://github.com/aquasecurity/trivy/issues/8953)) ([65e155f](https://github.com/aquasecurity/trivy/commit/65e155fdaf0ad02ec82f00a004427f126faf65ed))
- **redhat:** Add EOL date for RHEL 10. ([#&#8203;8910](https://github.com/aquasecurity/trivy/issues/8910)) ([48258a7](https://github.com/aquasecurity/trivy/commit/48258a701a7adb210c433310de52f48568ccee19))
- reject unsupported artifact types in remote image retrieval ([#&#8203;9052](https://github.com/aquasecurity/trivy/issues/9052)) ([1e1e1b5](https://github.com/aquasecurity/trivy/commit/1e1e1b5fa6a884da978fe1ed4c222d613d6eafbd))
- **sbom:** add manufacturer field to CycloneDX tools metadata ([#&#8203;9019](https://github.com/aquasecurity/trivy/issues/9019)) ([41d0f94](https://github.com/aquasecurity/trivy/commit/41d0f949c874609641c08fa2620fa10bf4ceef78))
- **terraform:** add partial evaluation for policy templates ([#&#8203;8967](https://github.com/aquasecurity/trivy/issues/8967)) ([a9f7dcd](https://github.com/aquasecurity/trivy/commit/a9f7dcdb9c5973746c3737f2bbc3306a74be5408))
- **ubuntu:** add end of life date for Ubuntu 25.04 ([#&#8203;9077](https://github.com/aquasecurity/trivy/issues/9077)) ([367564a](https://github.com/aquasecurity/trivy/commit/367564a3bec0c202566c59598dcff087bf50a23d))
- **ubuntu:** add eol date for 20.04-ESM ([#&#8203;8981](https://github.com/aquasecurity/trivy/issues/8981)) ([87118a0](https://github.com/aquasecurity/trivy/commit/87118a0ec4a6ae492523b7bac9834c2b93a14557))
- **vuln:** add Root.io support for container image scanning ([#&#8203;9073](https://github.com/aquasecurity/trivy/issues/9073)) ([3a0ec0f](https://github.com/aquasecurity/trivy/commit/3a0ec0f2acff6a13ed6ab348b6b220d49e14a298))

##### Bug Fixes

- Add missing version check flags ([#&#8203;8951](https://github.com/aquasecurity/trivy/issues/8951)) ([ef5f8de](https://github.com/aquasecurity/trivy/commit/ef5f8de8dadf5534a2c965aecca01c7067e5baca))
- **cli:** add some values to the telemetry call ([#&#8203;9056](https://github.com/aquasecurity/trivy/issues/9056)) ([fd2bc91](https://github.com/aquasecurity/trivy/commit/fd2bc91e133f846bc9f0910c19ac3be3fbfe4009))
- Correctly check for semver versions for trivy version check ([#&#8203;8948](https://github.com/aquasecurity/trivy/issues/8948)) ([b813527](https://github.com/aquasecurity/trivy/commit/b813527449c4604f5afad71ae82b13399bb48680))
- don't show corrupted trivy-db warning for first run ([#&#8203;8991](https://github.com/aquasecurity/trivy/issues/8991)) ([4ed78e3](https://github.com/aquasecurity/trivy/commit/4ed78e39afe57e81c12482fef9102dc3f85d1493))
- **misconf:** .Config.User always takes precedence over USER in .History ([#&#8203;9050](https://github.com/aquasecurity/trivy/issues/9050)) ([371b8cc](https://github.com/aquasecurity/trivy/commit/371b8cc02f2ffa3f42534a437ce8727519e7b9b9))
- **misconf:** correct Azure value-to-time conversion in AsTimeValue ([#&#8203;9015](https://github.com/aquasecurity/trivy/issues/9015)) ([40d017b](https://github.com/aquasecurity/trivy/commit/40d017b67da38131734eab90c42ad945ac3b5013))
- **misconf:** move disabled checks filtering after analyzer scan ([#&#8203;9002](https://github.com/aquasecurity/trivy/issues/9002)) ([a58c36d](https://github.com/aquasecurity/trivy/commit/a58c36de124cba7250e1a5ae0cc32d83018391fe))
- **misconf:** reduce log noise on incompatible check ([#&#8203;9029](https://github.com/aquasecurity/trivy/issues/9029)) ([99c5151](https://github.com/aquasecurity/trivy/commit/99c5151d6ea1dabe85cce75ff9bb91166532b11f))
- **nodejs:** correctly parse `packages` array of `bun.lock` file ([#&#8203;8998](https://github.com/aquasecurity/trivy/issues/8998)) ([875ec3a](https://github.com/aquasecurity/trivy/commit/875ec3a9d2568e15a6824c8f84ad6a59f03eb212))
- **report:** don't panic when report contains vulns, but doesn't contain packages for `table` format ([#&#8203;8549](https://github.com/aquasecurity/trivy/issues/8549)) ([87fda76](https://github.com/aquasecurity/trivy/commit/87fda76f38a3a6939a87828c3df0c5ac2cf7fce3))
- **sbom:** remove unnecessary OS detection check in SBOM decoding ([#&#8203;9034](https://github.com/aquasecurity/trivy/issues/9034)) ([198789a](https://github.com/aquasecurity/trivy/commit/198789a07b857b053c73f8fcd1f508902fac344d))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xLjMiLCJ1cGRhdGVkSW5WZXIiOiI0MS4xLjMiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbImltYWdlIl19-->

Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/812
Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net>
Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>
---
 clusters/cl01tl/monitoring/trivy/values.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/clusters/cl01tl/monitoring/trivy/values.yaml b/clusters/cl01tl/monitoring/trivy/values.yaml
index 0abe957c..a90a1829 100644
--- a/clusters/cl01tl/monitoring/trivy/values.yaml
+++ b/clusters/cl01tl/monitoring/trivy/values.yaml
@@ -16,7 +16,7 @@ trivy-operator:
     image:
       registry: mirror.gcr.io
       repository: aquasec/trivy
-      tag: 0.63.0
+      tag: 0.64.1
     storageClassEnabled: true
     storageClassName: ceph-block
     storageSize: "5Gi"