alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 3 Actions Activity
7,056 Commits 5 Branches 0 Tags
3aab0824f91258a9489f9278ff3558f542a1592b
Commit Graph

39 Commits

Author SHA1 Message Date
renovate-bot 83ecc058f9 Update mirror.gcr.io/aquasec/trivy Docker tag to v0.66.0 (#1367)
lint-test-helm / helm-lint (push) Has been cancelled
Details
renovate / renovate (push) Has been cancelled
Details 
This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [mirror.gcr.io/aquasec/trivy](https://www.aquasec.com/products/trivy/) ([source](https://github.com/aquasecurity/trivy)) | minor | `0.65.0` -> `0.66.0` |

---

### Release Notes

<details>
<summary>aquasecurity/trivy (mirror.gcr.io/aquasec/trivy)</summary>

### [`v0.66.0`](https://github.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0660-2025-09-02)

[Compare Source](https://github.com/aquasecurity/trivy/compare/v0.65.0...v0.66.0)

##### Features

- add timeout handling for cache database operations ([#&#8203;9307](https://github.com/aquasecurity/trivy/issues/9307)) ([235c24e](https://github.com/aquasecurity/trivy/commit/235c24e71a546b6196f7264fced2d02d836e3f85))
- **misconf:** added audit config attribute ([#&#8203;9249](https://github.com/aquasecurity/trivy/issues/9249)) ([4d4a244](https://github.com/aquasecurity/trivy/commit/4d4a2444b692512aca137dcbd367ff224fe25597))
- **secret:** implement streaming secret scanner with byte offset tracking ([#&#8203;9264](https://github.com/aquasecurity/trivy/issues/9264)) ([5a5e097](https://github.com/aquasecurity/trivy/commit/5a5e0972c72e629ddf2915ef066d632d58b8d3b0))
- **terraform:** use .terraform cache for remote modules in plan scanning ([#&#8203;9277](https://github.com/aquasecurity/trivy/issues/9277)) ([298a994](https://github.com/aquasecurity/trivy/commit/298a9941f098d2701b9524a703b9f9b1b9451785))

##### Bug Fixes

- **conda:** memory leak by adding closure method for `package.json` file ([#&#8203;9349](https://github.com/aquasecurity/trivy/issues/9349)) ([03d039f](https://github.com/aquasecurity/trivy/commit/03d039f17d94cf668152e83d0cf9dabf3b27d3dd))
- create temp file under composite fs dir ([#&#8203;9387](https://github.com/aquasecurity/trivy/issues/9387)) ([ce22f54](https://github.com/aquasecurity/trivy/commit/ce22f54a39a1abac08fa3ad540697c668792bf50))
- **cyclonedx:** handle multiple license types ([#&#8203;9378](https://github.com/aquasecurity/trivy/issues/9378)) ([46ab76a](https://github.com/aquasecurity/trivy/commit/46ab76a5af828c98cf93fc988ed6a405b7b07392))
- **fs:** avoid shadowing errors in file.glob ([#&#8203;9286](https://github.com/aquasecurity/trivy/issues/9286)) ([b51c789](https://github.com/aquasecurity/trivy/commit/b51c789330141d634a9b14bd10994c997862940f))
- **image:** use standardized HTTP client for ECR authentication ([#&#8203;9322](https://github.com/aquasecurity/trivy/issues/9322)) ([84fbf86](https://github.com/aquasecurity/trivy/commit/84fbf8674dfc0f91d8795a50bafa6041cce83ba2))
- **misconf:** ensure ignore rules respect subdirectory chart paths ([#&#8203;9324](https://github.com/aquasecurity/trivy/issues/9324)) ([d3cd101](https://github.com/aquasecurity/trivy/commit/d3cd101266eb7bf9b8ffe5899765efa7bd1abe30))
- **misconf:** ensure module source is known ([#&#8203;9404](https://github.com/aquasecurity/trivy/issues/9404)) ([81d9425](https://github.com/aquasecurity/trivy/commit/81d94253c8bc816ad932f7e0c0b8907e1cd759bb))
- **misconf:** preserve original paths of remote submodules from .terraform ([#&#8203;9294](https://github.com/aquasecurity/trivy/issues/9294)) ([1319d8d](https://github.com/aquasecurity/trivy/commit/1319d8dc7f4796177876af18f0e13ba1f7086348))
- **misconf:** use correct field log\_bucket instead of target\_bucket in gcp bucket ([#&#8203;9296](https://github.com/aquasecurity/trivy/issues/9296)) ([04ad0c4](https://github.com/aquasecurity/trivy/commit/04ad0c4fc2926a92e9e9ec11bb8eae826ed95827))
- persistent flag option typo ([#&#8203;9374](https://github.com/aquasecurity/trivy/issues/9374)) ([6e99dd3](https://github.com/aquasecurity/trivy/commit/6e99dd304c7fad8213489039e7ca42909383b5ff))
- **plugin:** don't remove plugins when updating index.yaml file ([#&#8203;9358](https://github.com/aquasecurity/trivy/issues/9358)) ([5f067ac](https://github.com/aquasecurity/trivy/commit/5f067ac15e5c609283bef26a211746a279b6b5d0))
- **python:** impove package name normalization  ([#&#8203;9290](https://github.com/aquasecurity/trivy/issues/9290)) ([1473e88](https://github.com/aquasecurity/trivy/commit/1473e88b74ca269691de7827e045703612b90050))
- **repo:** preserve RepoMetadata on FS cache hit ([#&#8203;9389](https://github.com/aquasecurity/trivy/issues/9389)) ([4f2a44e](https://github.com/aquasecurity/trivy/commit/4f2a44ea45bed1e842bb2072077da67ec7e744ac))
- **repo:** sanitize git repo URL before inserting into report metadata ([#&#8203;9391](https://github.com/aquasecurity/trivy/issues/9391)) ([1ac9b1f](https://github.com/aquasecurity/trivy/commit/1ac9b1f07cea429cc122bf9721e8909c649549cf))
- **sbom:** add support for `file` component type of `CycloneDX` ([#&#8203;9372](https://github.com/aquasecurity/trivy/issues/9372)) ([aa7cf43](https://github.com/aquasecurity/trivy/commit/aa7cf4387c5e82c1f629ac14cd6a35b48fc95983))
- suppress debug log for context cancellation errors ([#&#8203;9298](https://github.com/aquasecurity/trivy/issues/9298)) ([2458d5e](https://github.com/aquasecurity/trivy/commit/2458d5e28a54da9adec0b36f6b1e6bd4f15a72ce))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4zNS4xIiwidXBkYXRlZEluVmVyIjoiNDEuMzUuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiaW1hZ2UiXX0=-->

Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/1367
Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net>
Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>
 2025-09-03 18:32:46 +00:00
alexlebens 9a611ba15d disable scanner
lint-test-helm / helm-lint (push) Successful in 12s
Details
renovate / renovate (push) Successful in 1m34s
Details
2025-08-23 22:27:19 -05:00
renovate-bot 4b9be37a8c Update Helm release trivy-operator to v0.30.0 (#1153)
lint-test-helm / helm-lint (push) Successful in 12s
Details
renovate / renovate (push) Successful in 3m15s
Details 
This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [trivy-operator](https://github.com/aquasecurity/helm-charts) | minor | `0.29.3` -> `0.30.0` |

---

### Release Notes

<details>
<summary>aquasecurity/helm-charts (trivy-operator)</summary>

### [`v0.30.0`](https://github.com/aquasecurity/helm-charts/releases/tag/trivy-operator-0.30.0)

[Compare Source](https://github.com/aquasecurity/helm-charts/compare/trivy-operator-0.29.3...trivy-operator-0.30.0)

Keeps security report resources updated

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4zNS4xIiwidXBkYXRlZEluVmVyIjoiNDEuMzUuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiY2hhcnQiXX0=-->

Reviewed-on: #1153
Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net>
Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>
 2025-08-07 21:15:11 +00:00
renovate-bot c7f1cde10a Update mirror.gcr.io/aquasec/trivy Docker tag to v0.65.0 (#1073)
lint-test-helm / helm-lint (push) Successful in 8s
Details
renovate / renovate (push) Has been cancelled
Details 
This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [mirror.gcr.io/aquasec/trivy](https://www.aquasec.com/products/trivy/) ([source](https://github.com/aquasecurity/trivy)) | minor | `0.64.1` -> `0.65.0` |

---

### Release Notes

<details>
<summary>aquasecurity/trivy (mirror.gcr.io/aquasec/trivy)</summary>

### [`v0.65.0`](https://github.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0650-2025-07-30)

[Compare Source](https://github.com/aquasecurity/trivy/compare/v0.64.1...v0.65.0)

##### Features

- add graceful shutdown with signal handling ([#&#8203;9242](https://github.com/aquasecurity/trivy/issues/9242)) ([2c05882](https://github.com/aquasecurity/trivy/commit/2c05882f45071928c14d8212ef6c4f0f7048245d))
- add HTTP request/response tracing support ([#&#8203;9125](https://github.com/aquasecurity/trivy/issues/9125)) ([aa5b32a](https://github.com/aquasecurity/trivy/commit/aa5b32a19f4d61d0df72c11fd314c5a0b7284202))
- **alma:** add AlmaLinux 10 support ([#&#8203;9207](https://github.com/aquasecurity/trivy/issues/9207)) ([861d51e](https://github.com/aquasecurity/trivy/commit/861d51e99a45ee448f86fe195dedcaefb811c919))
- **flag:** add schema validation for `--server` flag ([#&#8203;9270](https://github.com/aquasecurity/trivy/issues/9270)) ([ed4640e](https://github.com/aquasecurity/trivy/commit/ed4640ec27f2575a50d7e6d516c9e2e45a59bb7f))
- **image:** add Docker context resolution ([#&#8203;9166](https://github.com/aquasecurity/trivy/issues/9166)) ([99cd4e7](https://github.com/aquasecurity/trivy/commit/99cd4e776c0c6cc689126e53fa86ee6333ba6277))
- **license:** observe pkg types option in license scanner ([#&#8203;9091](https://github.com/aquasecurity/trivy/issues/9091)) ([d44af8c](https://github.com/aquasecurity/trivy/commit/d44af8cfa21a145d14ca6e5e1ed4742d892f2dc5))
- **misconf:** add private ip google access attribute to subnetwork ([#&#8203;9199](https://github.com/aquasecurity/trivy/issues/9199)) ([263845c](https://github.com/aquasecurity/trivy/commit/263845cfc1419401f24adc8bc6316f3ea0caacad))
- **misconf:** added logging and versioning to the gcp storage bucket ([#&#8203;9226](https://github.com/aquasecurity/trivy/issues/9226)) ([110f80e](https://github.com/aquasecurity/trivy/commit/110f80ea29951863997dd5a1c48fe14eb81e230b))
- **repo:** add git repository metadata to reports ([#&#8203;9252](https://github.com/aquasecurity/trivy/issues/9252)) ([f4b2cf1](https://github.com/aquasecurity/trivy/commit/f4b2cf10e917d58c0840f789e083bd3f268a8af1))
- **report:** add CVSS vectors in sarif report ([#&#8203;9157](https://github.com/aquasecurity/trivy/issues/9157)) ([60723e6](https://github.com/aquasecurity/trivy/commit/60723e6cfce82ede2863cf545a189c581246f4e9))
- **sbom:** add SHA-512 hash support for CycloneDX SBOM ([#&#8203;9126](https://github.com/aquasecurity/trivy/issues/9126)) ([12d6706](https://github.com/aquasecurity/trivy/commit/12d6706961423acb12430c8b3d986b4aa4671d04))

##### Bug Fixes

- **alma:** parse epochs from rpmqa file ([#&#8203;9101](https://github.com/aquasecurity/trivy/issues/9101)) ([82db2fc](https://github.com/aquasecurity/trivy/commit/82db2fcc8034c911cc7a67f5a82d2f081d9c1fdf))
- also check `filepath` when removing duplicate packages ([#&#8203;9142](https://github.com/aquasecurity/trivy/issues/9142)) ([4d10a81](https://github.com/aquasecurity/trivy/commit/4d10a815dde53f5e128366f1dd0837a1dc29c17b))
- **aws:** update amazon linux 2 EOL date ([#&#8203;9176](https://github.com/aquasecurity/trivy/issues/9176)) ([0ecfed6](https://github.com/aquasecurity/trivy/commit/0ecfed6ea75cfe33e0f436a9015ac72a679e754e))
- **cli:** Add more non-sensitive flags to telemetry ([#&#8203;9110](https://github.com/aquasecurity/trivy/issues/9110)) ([7041a39](https://github.com/aquasecurity/trivy/commit/7041a39bdcf21c5b3114137d9a931f529eac2566))
- **cli:** ensure correct command is picked by telemetry ([#&#8203;9260](https://github.com/aquasecurity/trivy/issues/9260)) ([b4ad00f](https://github.com/aquasecurity/trivy/commit/b4ad00f301a5fd7326060a567871c6f4a9711696))
- **cli:** panic: attempt to get os.Args\[1] when len(os.Args) < 2 ([#&#8203;9206](https://github.com/aquasecurity/trivy/issues/9206)) ([adfa879](https://github.com/aquasecurity/trivy/commit/adfa879e4e8ab88f211222a13d2b89013ae9a853))
- **license:** add missed `GFDL-NIV-1.1` and `GFDL-NIV-1.2` into Trivy mapping ([#&#8203;9116](https://github.com/aquasecurity/trivy/issues/9116)) ([a692f29](https://github.com/aquasecurity/trivy/commit/a692f296d15f7241ba5ff082e4e69926b1c728a8))
- **license:** handle WITH operator for `LaxSplitLicenses` ([#&#8203;9232](https://github.com/aquasecurity/trivy/issues/9232)) ([b4193d0](https://github.com/aquasecurity/trivy/commit/b4193d0d31a167aafdcd9d9ccd89f3f124eef7ee))
- migrate from `*.list` to `*.md5sums` files for `dpkg` ([#&#8203;9131](https://github.com/aquasecurity/trivy/issues/9131)) ([f224de3](https://github.com/aquasecurity/trivy/commit/f224de3e39b08672212ec0f94660c36bef77bc30))
- **misconf:** correctly adapt azure storage account ([#&#8203;9138](https://github.com/aquasecurity/trivy/issues/9138)) ([51aa022](https://github.com/aquasecurity/trivy/commit/51aa0222604829706193eb2ff3a6886742bb42b4))
- **misconf:** correctly parse empty port ranges in google\_compute\_firewall ([#&#8203;9237](https://github.com/aquasecurity/trivy/issues/9237)) ([77bab7b](https://github.com/aquasecurity/trivy/commit/77bab7b6d25c712e2db7dc53956985c2721728e9))
- **misconf:** fix log bucket in schema ([#&#8203;9235](https://github.com/aquasecurity/trivy/issues/9235)) ([7ebc129](https://github.com/aquasecurity/trivy/commit/7ebc129ab726f3133d940708837b7edda2621105))
- **misconf:** skip rewriting expr if attr is nil ([#&#8203;9113](https://github.com/aquasecurity/trivy/issues/9113)) ([42ccd3d](https://github.com/aquasecurity/trivy/commit/42ccd3df9a7c838a99facb8248e1a68eaf47a999))
- **nodejs:** don't use prerelease logic for compare npm constraints  ([#&#8203;9208](https://github.com/aquasecurity/trivy/issues/9208)) ([fe96436](https://github.com/aquasecurity/trivy/commit/fe96436b99bae3bbfc7498d2ad222d4acccdfcf1))
- prevent graceful shutdown message on normal exit ([#&#8203;9244](https://github.com/aquasecurity/trivy/issues/9244)) ([6095984](https://github.com/aquasecurity/trivy/commit/6095984d5340633740204a7a40f002a5643802b9))
- **rootio:** check full version to detect `root.io` packages ([#&#8203;9117](https://github.com/aquasecurity/trivy/issues/9117)) ([c2ddd44](https://github.com/aquasecurity/trivy/commit/c2ddd44d98594a2066cb5b5acbb9ad2aaad8fd96))
- **rootio:** fix severity selection ([#&#8203;9181](https://github.com/aquasecurity/trivy/issues/9181)) ([6fafbeb](https://github.com/aquasecurity/trivy/commit/6fafbeb60609a020b47266743250ea847234cbbd))
- **sbom:** merge in-graph and out-of-graph OS packages in scan results ([#&#8203;9194](https://github.com/aquasecurity/trivy/issues/9194)) ([aa944cc](https://github.com/aquasecurity/trivy/commit/aa944cc6da43e2035f74e9d842f487c0d2f993f4))
- **sbom:** use correct field for licenses in CycloneDX reports ([#&#8203;9057](https://github.com/aquasecurity/trivy/issues/9057)) ([143da88](https://github.com/aquasecurity/trivy/commit/143da88dd82dfbe204f4c2afe46af3b01701675d))
- **secret:** add UTF-8 validation in secret scanner to prevent protobuf marshalling errors ([#&#8203;9253](https://github.com/aquasecurity/trivy/issues/9253)) ([54832a7](https://github.com/aquasecurity/trivy/commit/54832a77b50e2da3a3ceacbb6ce1b13e45605cde))
- **secret:** fix line numbers for multiple-line secrets ([#&#8203;9104](https://github.com/aquasecurity/trivy/issues/9104)) ([e579746](https://github.com/aquasecurity/trivy/commit/e57974649e4a3a275b9cf02db191b3f6bf10340f))
- **server:** add HTTP transport setup to server mode ([#&#8203;9217](https://github.com/aquasecurity/trivy/issues/9217)) ([1163b04](https://github.com/aquasecurity/trivy/commit/1163b044c7e91a81bba3a862cc4a38e90182f0b4))
- supporting .egg-info/METADATA in python.Packaging analyzer ([#&#8203;9151](https://github.com/aquasecurity/trivy/issues/9151)) ([e306e2d](https://github.com/aquasecurity/trivy/commit/e306e2dc5275c0e75f056c8c7ee9ff9261c78e7f))
- **terraform:** `for_each` on a map returns a resource for every key ([#&#8203;9156](https://github.com/aquasecurity/trivy/issues/9156)) ([153318f](https://github.com/aquasecurity/trivy/commit/153318f65f7e5059bcc064bd2cd651cc720791a9))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xLjMiLCJ1cGRhdGVkSW5WZXIiOiI0MS4xLjMiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbImltYWdlIl19-->

Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/1073
Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net>
Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>
 2025-07-31 15:10:56 +00:00
renovate-bot a55c150931 Update Helm release trivy-operator to v0.29.3
renovate/stability-days Updates have met minimum release age requirement
Details
lint-test-helm / helm-lint (pull_request) Successful in 7s
Details
lint-test-helm / helm-lint (push) Successful in 8s
Details
process-pull-requests / process-pull-requests (push) Failing after 11s
Details
process-issues / process-issues (push) Failing after 13s
Details
renovate / renovate (push) Successful in 1m42s
Details
2025-07-11 23:01:12 +00:00
renovate-bot 071ddd31a3 Update Helm release trivy-operator to v0.29.2
renovate / renovate (push) Successful in 5m34s
Details
lint-test-helm / helm-lint (push) Successful in 10s
Details
renovate/stability-days Updates have met minimum release age requirement
Details
lint-test-helm / helm-lint (pull_request) Successful in 27s
Details
2025-07-09 08:01:33 +00:00
alexlebens f67e39ebaa add toleration
lint-test-helm / helm-lint (push) Successful in 14s
Details
renovate / renovate (push) Successful in 2m19s
Details
2025-07-08 21:27:25 -05:00
renovate-bot 12831ad36e Update mirror.gcr.io/aquasec/trivy Docker tag to v0.64.1 (#812)
renovate / renovate (push) Has been cancelled
Details
lint-test-helm / helm-lint (push) Has been cancelled
Details 
This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [mirror.gcr.io/aquasec/trivy](https://www.aquasec.com/products/trivy/) ([source](https://github.com/aquasecurity/trivy)) | minor | `0.63.0` -> `0.64.1` |

---

### Release Notes

<details>
<summary>aquasecurity/trivy (mirror.gcr.io/aquasec/trivy)</summary>

### [`v0.64.1`](https://github.com/aquasecurity/trivy/releases/tag/v0.64.1)

[Compare Source](https://github.com/aquasecurity/trivy/compare/v0.64.0...v0.64.1)

#### Changelog

- [`86ee3c1`](https://github.com/aquasecurity/trivy/commit/86ee3c1176d4707536914dfa65ac8eca452e14cd) release: v0.64.1 \[release/v0.64] ([#&#8203;9122](https://github.com/aquasecurity/trivy/issues/9122))
- [`4e12722`](https://github.com/aquasecurity/trivy/commit/4e1272283a643bfca2d7231d286006219715fada) fix(misconf): skip rewriting expr if attr is nil \[backport: release/v0.64] ([#&#8203;9127](https://github.com/aquasecurity/trivy/issues/9127))
- [`9a7d384`](https://github.com/aquasecurity/trivy/commit/9a7d38432cf00f00970259e5ac3edd060e00ccff) fix(cli): Add more non-sensitive flags to telemetry \[backport: release/v0.64] ([#&#8203;9124](https://github.com/aquasecurity/trivy/issues/9124))
- [`53adfba`](https://github.com/aquasecurity/trivy/commit/53adfba3c25664b01e3a36fdec334b39b53c07f1) fix(rootio): check full version to detect `root.io` packages \[backport: release/v0.64] ([#&#8203;9120](https://github.com/aquasecurity/trivy/issues/9120))
- [`8cf1bf9`](https://github.com/aquasecurity/trivy/commit/8cf1bf9f6f86936ee7dcd29e0d1cd1ec106e28f6) fix(alma): parse epochs from rpmqa file \[backport: release/v0.64] ([#&#8203;9119](https://github.com/aquasecurity/trivy/issues/9119))

### [`v0.64.0`](https://github.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0640-2025-06-30)

[Compare Source](https://github.com/aquasecurity/trivy/compare/v0.63.0...v0.64.0)

##### Features

- **cli:** add version constraints to annoucements ([#&#8203;9023](https://github.com/aquasecurity/trivy/issues/9023)) ([19efa9f](https://github.com/aquasecurity/trivy/commit/19efa9fd372242d2ec582a248e9e6573d2caef00))
- **java:** dereference all maven settings.xml env placeholders ([#&#8203;9024](https://github.com/aquasecurity/trivy/issues/9024)) ([5aade69](https://github.com/aquasecurity/trivy/commit/5aade698c71450badf8db028be61e12ec85c6248))
- **misconf:** add OpenTofu file extension support ([#&#8203;8747](https://github.com/aquasecurity/trivy/issues/8747)) ([57801d0](https://github.com/aquasecurity/trivy/commit/57801d0324384d990889ba39d856c881e5b8b070))
- **misconf:** normalize CreatedBy for buildah and legacy docker builder ([#&#8203;8953](https://github.com/aquasecurity/trivy/issues/8953)) ([65e155f](https://github.com/aquasecurity/trivy/commit/65e155fdaf0ad02ec82f00a004427f126faf65ed))
- **redhat:** Add EOL date for RHEL 10. ([#&#8203;8910](https://github.com/aquasecurity/trivy/issues/8910)) ([48258a7](https://github.com/aquasecurity/trivy/commit/48258a701a7adb210c433310de52f48568ccee19))
- reject unsupported artifact types in remote image retrieval ([#&#8203;9052](https://github.com/aquasecurity/trivy/issues/9052)) ([1e1e1b5](https://github.com/aquasecurity/trivy/commit/1e1e1b5fa6a884da978fe1ed4c222d613d6eafbd))
- **sbom:** add manufacturer field to CycloneDX tools metadata ([#&#8203;9019](https://github.com/aquasecurity/trivy/issues/9019)) ([41d0f94](https://github.com/aquasecurity/trivy/commit/41d0f949c874609641c08fa2620fa10bf4ceef78))
- **terraform:** add partial evaluation for policy templates ([#&#8203;8967](https://github.com/aquasecurity/trivy/issues/8967)) ([a9f7dcd](https://github.com/aquasecurity/trivy/commit/a9f7dcdb9c5973746c3737f2bbc3306a74be5408))
- **ubuntu:** add end of life date for Ubuntu 25.04 ([#&#8203;9077](https://github.com/aquasecurity/trivy/issues/9077)) ([367564a](https://github.com/aquasecurity/trivy/commit/367564a3bec0c202566c59598dcff087bf50a23d))
- **ubuntu:** add eol date for 20.04-ESM ([#&#8203;8981](https://github.com/aquasecurity/trivy/issues/8981)) ([87118a0](https://github.com/aquasecurity/trivy/commit/87118a0ec4a6ae492523b7bac9834c2b93a14557))
- **vuln:** add Root.io support for container image scanning ([#&#8203;9073](https://github.com/aquasecurity/trivy/issues/9073)) ([3a0ec0f](https://github.com/aquasecurity/trivy/commit/3a0ec0f2acff6a13ed6ab348b6b220d49e14a298))

##### Bug Fixes

- Add missing version check flags ([#&#8203;8951](https://github.com/aquasecurity/trivy/issues/8951)) ([ef5f8de](https://github.com/aquasecurity/trivy/commit/ef5f8de8dadf5534a2c965aecca01c7067e5baca))
- **cli:** add some values to the telemetry call ([#&#8203;9056](https://github.com/aquasecurity/trivy/issues/9056)) ([fd2bc91](https://github.com/aquasecurity/trivy/commit/fd2bc91e133f846bc9f0910c19ac3be3fbfe4009))
- Correctly check for semver versions for trivy version check ([#&#8203;8948](https://github.com/aquasecurity/trivy/issues/8948)) ([b813527](https://github.com/aquasecurity/trivy/commit/b813527449c4604f5afad71ae82b13399bb48680))
- don't show corrupted trivy-db warning for first run ([#&#8203;8991](https://github.com/aquasecurity/trivy/issues/8991)) ([4ed78e3](https://github.com/aquasecurity/trivy/commit/4ed78e39afe57e81c12482fef9102dc3f85d1493))
- **misconf:** .Config.User always takes precedence over USER in .History ([#&#8203;9050](https://github.com/aquasecurity/trivy/issues/9050)) ([371b8cc](https://github.com/aquasecurity/trivy/commit/371b8cc02f2ffa3f42534a437ce8727519e7b9b9))
- **misconf:** correct Azure value-to-time conversion in AsTimeValue ([#&#8203;9015](https://github.com/aquasecurity/trivy/issues/9015)) ([40d017b](https://github.com/aquasecurity/trivy/commit/40d017b67da38131734eab90c42ad945ac3b5013))
- **misconf:** move disabled checks filtering after analyzer scan ([#&#8203;9002](https://github.com/aquasecurity/trivy/issues/9002)) ([a58c36d](https://github.com/aquasecurity/trivy/commit/a58c36de124cba7250e1a5ae0cc32d83018391fe))
- **misconf:** reduce log noise on incompatible check ([#&#8203;9029](https://github.com/aquasecurity/trivy/issues/9029)) ([99c5151](https://github.com/aquasecurity/trivy/commit/99c5151d6ea1dabe85cce75ff9bb91166532b11f))
- **nodejs:** correctly parse `packages` array of `bun.lock` file ([#&#8203;8998](https://github.com/aquasecurity/trivy/issues/8998)) ([875ec3a](https://github.com/aquasecurity/trivy/commit/875ec3a9d2568e15a6824c8f84ad6a59f03eb212))
- **report:** don't panic when report contains vulns, but doesn't contain packages for `table` format ([#&#8203;8549](https://github.com/aquasecurity/trivy/issues/8549)) ([87fda76](https://github.com/aquasecurity/trivy/commit/87fda76f38a3a6939a87828c3df0c5ac2cf7fce3))
- **sbom:** remove unnecessary OS detection check in SBOM decoding ([#&#8203;9034](https://github.com/aquasecurity/trivy/issues/9034)) ([198789a](https://github.com/aquasecurity/trivy/commit/198789a07b857b053c73f8fcd1f508902fac344d))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xLjMiLCJ1cGRhdGVkSW5WZXIiOiI0MS4xLjMiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbImltYWdlIl19-->

Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/812
Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net>
Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>
 2025-07-05 04:54:50 +00:00
alexlebens 2a4adef031 disable vul scanner
lint-test-helm / helm-lint (push) Failing after 44s
Details
renovate / renovate (push) Successful in 1m52s
Details
2025-06-20 12:03:34 -05:00
alexlebens 341cbf80da remove mount
lint-test-helm / helm-lint (push) Failing after 6s
Details
renovate / renovate (push) Successful in 1m55s
Details
2025-06-20 11:23:29 -05:00
alexlebens c53a97aaea remove mount
lint-test-helm / helm-lint (push) Failing after 7s
Details
renovate / renovate (push) Successful in 1m21s
Details
2025-06-20 11:13:57 -05:00
alexlebens 3b1f0099fe change namespace
lint-test-helm / helm-lint (push) Failing after 5s
Details
renovate / renovate (push) Successful in 1m22s
Details
2025-06-20 11:02:06 -05:00
renovate-bot 982dccb364 Update Helm release trivy-operator to v0.29.1
renovate / renovate (push) Has been cancelled
Details
lint-test-helm / helm-lint (push) Failing after 5s
Details
renovate/stability-days Updates have not met minimum release age requirement
Details
lint-test-helm / helm-lint (pull_request) Successful in 9s
Details
2025-06-19 03:20:48 +00:00
renovate-bot 36b90765a7 Update Helm release trivy-operator to v0.29.0
renovate/stability-days Updates have not met minimum release age requirement
Details
lint-test-helm / helm-lint (pull_request) Successful in 7s
Details
2025-06-11 14:02:43 +00:00
alexlebens 6687200c71 enable other scanners
renovate / renovate (push) Successful in 1m28s
Details
2025-06-05 12:16:47 -05:00
renovate-bot bba062401d Update mirror.gcr.io/aquasec/trivy Docker tag to v0.63.0
lint-and-test-charts / lint-test (pull_request) Successful in 40s
Details
2025-06-05 04:37:18 +00:00
alexlebens 170811acf6 fix path
renovate / renovate (push) Has been cancelled
Details
2025-06-04 21:38:40 -05:00
alexlebens 58f4a8a29b add trivy
renovate / renovate (push) Has been cancelled
Details
2025-06-04 21:38:03 -05:00
alexlebens 992704e455 remove trivy 2024-08-12 13:14:45 -05:00
alexlebens 022107933e add trivy 2024-08-11 16:21:19 -05:00
alexlebens e7f21018df remove trivy 2024-08-08 11:57:37 -05:00
renovate[bot] b77dd00344 Update ghcr.io/aquasecurity/trivy Docker tag to v0.54.1 2024-08-01 03:38:42 +00:00
alexlebens e0d75229dd add toleration for control plane 2024-07-12 16:38:10 -05:00
alexlebens 11c8d1ec62 remove namespace limits 2024-07-12 16:28:40 -05:00
alexlebens a7dc98879e fix whitespace 2024-07-12 16:22:35 -05:00
alexlebens a9c48798fa enable vulnerability scanning 2024-07-12 16:19:19 -05:00
alexlebens 98cde42b31 enable some scanners 2024-07-12 16:18:05 -05:00
alexlebens f6eb1e9db4 enable some scanners 2024-07-12 16:13:08 -05:00
alexlebens 7d00efb1ee enable some scanners 2024-07-12 16:07:52 -05:00
alexlebens df4ade1472 add cloudflared namespaces 2024-07-12 16:07:04 -05:00
alexlebens c99ce7c509 add trivy 2024-07-12 15:53:15 -05:00
alexlebens 64b43c0c44 remove trivy 2024-07-12 15:29:33 -05:00
alexlebens 5b7cf34411 limit jobs 2024-07-12 15:25:05 -05:00
alexlebens fc5cded3ef remove systemd from trivy mounts 2024-07-12 15:20:07 -05:00
alexlebens 3b883a64bd add trivy 2024-07-12 14:47:02 -05:00
alexlebens dbd7d6706e remove spegel and tricy 2024-07-10 19:31:07 -05:00
alexlebens 89b94556df increase timeout 2024-07-10 18:46:43 -05:00
alexlebens 88c636149e fix values 2024-07-10 17:54:54 -05:00
alexlebens 1bcc887544 add trivy 2024-07-10 17:46:29 -05:00