alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 7 Actions Packages Projects Releases Wiki Activity

Update mirror.gcr.io/aquasec/trivy Docker tag to v0.63.0 #581

Merged
alexlebens merged 1 commits from renovate/mirror.gcr.io-aquasec-trivy-0.x into main 2025-06-05 04:38:01 +00:00
Conversation 0 Commits 1 Files Changed 1 +1 -1
renovate-bot commented 2025-06-05 02:40:48 +00:00
Collaborator
Copy Link

This PR contains the following updates:

Package Update Change
mirror.gcr.io/aquasec/trivy (source) minor 0.62.1 -> 0.63.0

Release Notes

aquasecurity/trivy (mirror.gcr.io/aquasec/trivy)

v0.63.0

Compare Source

Features
Bug Fixes
Performance Improvements
  • secret: only match secrets of meaningful length, allow example strings to not be matched (#​8602) (60fef1b)

Configuration

📅 Schedule: Branch creation - Every minute ( * */1 * * * ) in timezone US/Central, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [mirror.gcr.io/aquasec/trivy](https://www.aquasec.com/products/trivy/) ([source](https://github.com/aquasecurity/trivy)) | minor | `0.62.1` -> `0.63.0` | --- ### Release Notes <details> <summary>aquasecurity/trivy (mirror.gcr.io/aquasec/trivy)</summary> ### [`v0.63.0`](https://github.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0630-2025-05-29) [Compare Source](https://github.com/aquasecurity/trivy/compare/v0.62.1...v0.63.0) ##### Features - add Bottlerocket OS package analyzer ([#&#8203;8653](https://github.com/aquasecurity/trivy/issues/8653)) ([07ef63b](https://github.com/aquasecurity/trivy/commit/07ef63b4830f9f3d791a07433287a99118d7590a)) - add JSONC support for comments and trailing commas ([#&#8203;8862](https://github.com/aquasecurity/trivy/issues/8862)) ([0b0e406](https://github.com/aquasecurity/trivy/commit/0b0e4061ef955efc0f94280d2d390f11ff6e2409)) - **alpine:** add maintainer field extraction for APK packages ([#&#8203;8930](https://github.com/aquasecurity/trivy/issues/8930)) ([104bbc1](https://github.com/aquasecurity/trivy/commit/104bbc18ea85caec17125296dc4fe2dea9c49826)) - **cli:** Add available version checking ([#&#8203;8553](https://github.com/aquasecurity/trivy/issues/8553)) ([5a0bf9e](https://github.com/aquasecurity/trivy/commit/5a0bf9ed31ad34248895e69231da602935e66785)) - **echo:** Add Echo Support ([#&#8203;8833](https://github.com/aquasecurity/trivy/issues/8833)) ([c7b8cc3](https://github.com/aquasecurity/trivy/commit/c7b8cc392eb28eb63e10561cf1ff7991e5e3c548)) - **go:** support license scanning in both GOPATH and vendor ([#&#8203;8843](https://github.com/aquasecurity/trivy/issues/8843)) ([26437be](https://github.com/aquasecurity/trivy/commit/26437be083960d17bee8b1b37b8a6780eff07981)) - **k8s:** get components from namespaced resources ([#&#8203;8918](https://github.com/aquasecurity/trivy/issues/8918)) ([4f1ab23](https://github.com/aquasecurity/trivy/commit/4f1ab238693919772a65450de9fb9fb2f873c0d6)) - **license:** improve work text licenses with custom classification ([#&#8203;8888](https://github.com/aquasecurity/trivy/issues/8888)) ([ee52230](https://github.com/aquasecurity/trivy/commit/ee522300b73a2afc72829fc2fa7ff419712fc89a)) - **license:** improve work with custom classification of licenses from config file ([#&#8203;8861](https://github.com/aquasecurity/trivy/issues/8861)) ([c321fdf](https://github.com/aquasecurity/trivy/commit/c321fdfcdd58f34d076fc730e2b63fdd13e426a9)) - **license:** scan vendor directory for license for go.mod files ([#&#8203;8689](https://github.com/aquasecurity/trivy/issues/8689)) ([dd6a6e5](https://github.com/aquasecurity/trivy/commit/dd6a6e50a44b7b543fd9dba634da599a76650acb)) - **license:** Support compound licenses (licenses using SPDX operators) ([#&#8203;8816](https://github.com/aquasecurity/trivy/issues/8816)) ([39f9ed1](https://github.com/aquasecurity/trivy/commit/39f9ed128b2c0fb599ad9092a3cf5675106bffdc)) - **minimos:** Add support for MinimOS ([#&#8203;8792](https://github.com/aquasecurity/trivy/issues/8792)) ([c2dde33](https://github.com/aquasecurity/trivy/commit/c2dde33c3f19d499258a7089d7658a9f90722acf)) - **misconf:** add misconfiguration location to junit template ([#&#8203;8793](https://github.com/aquasecurity/trivy/issues/8793)) ([a516775](https://github.com/aquasecurity/trivy/commit/a516775da6fda92a55a62418a081561127a1d5ca)) - **misconf:** Add support for `Minimum Trivy Version` ([#&#8203;8880](https://github.com/aquasecurity/trivy/issues/8880)) ([3b2a397](https://github.com/aquasecurity/trivy/commit/3b2a3976ac7e7785828655903b132e84ebd9d727)) - **misconf:** export raw Terraform data to Rego ([#&#8203;8741](https://github.com/aquasecurity/trivy/issues/8741)) ([aaecc29](https://github.com/aquasecurity/trivy/commit/aaecc29e909db4d5dac03caa0daf223035bfb877)) - **nodejs:** add a bun.lock analyzer ([#&#8203;8897](https://github.com/aquasecurity/trivy/issues/8897)) ([7ca656d](https://github.com/aquasecurity/trivy/commit/7ca656d54b99346253fc6ac6422eecaca169514e)) - **nodejs:** add bun.lock parser ([#&#8203;8851](https://github.com/aquasecurity/trivy/issues/8851)) ([1dcf816](https://github.com/aquasecurity/trivy/commit/1dcf81666f1c814600702b9ab603b4070da0b940)) - terraform parser option to set current working directory ([#&#8203;8909](https://github.com/aquasecurity/trivy/issues/8909)) ([8939451](https://github.com/aquasecurity/trivy/commit/893945117464bf6e090a55e3822f8299825f26d4)) ##### Bug Fixes - check post-analyzers for StaticPaths ([#&#8203;8904](https://github.com/aquasecurity/trivy/issues/8904)) ([93e6680](https://github.com/aquasecurity/trivy/commit/93e6680b1c6bbb590157f521c667c0f611775143)) - **cli:** disable `--skip-dir` and `--skip-files` flags for `sbom` command ([#&#8203;8886](https://github.com/aquasecurity/trivy/issues/8886)) ([69a5fa1](https://github.com/aquasecurity/trivy/commit/69a5fa18ca86ff7e5206abacf98732d46c000c7a)) - **cli:** don't use allow values for `--compliance` flag ([#&#8203;8881](https://github.com/aquasecurity/trivy/issues/8881)) ([35e8889](https://github.com/aquasecurity/trivy/commit/35e88890c3c201b3eb11f95376172e57bf44df4b)) - filter all files when processing files installed from package managers ([#&#8203;8842](https://github.com/aquasecurity/trivy/issues/8842)) ([6ebde88](https://github.com/aquasecurity/trivy/commit/6ebde88dbcaf22f25932bad4844b3c9eaca90560)) - **java:** exclude dev dependencies in gradle lockfile ([#&#8203;8803](https://github.com/aquasecurity/trivy/issues/8803)) ([8995838](https://github.com/aquasecurity/trivy/commit/8995838e8d184ee9178d5b52d2d3fa9b4e403015)) - julia parser panicing ([#&#8203;8883](https://github.com/aquasecurity/trivy/issues/8883)) ([be8c7b7](https://github.com/aquasecurity/trivy/commit/be8c7b796dbe36d8dc3889e0bdea23336de9a1ab)) - **julia:** add `Relationship` field support ([#&#8203;8939](https://github.com/aquasecurity/trivy/issues/8939)) ([22f040f](https://github.com/aquasecurity/trivy/commit/22f040f94790060132c7b0a635f44c35d5a35fb6)) - **k8s:** use in-memory cache backend during misconfig scanning ([#&#8203;8873](https://github.com/aquasecurity/trivy/issues/8873)) ([fe12771](https://github.com/aquasecurity/trivy/commit/fe127715e505d753e0d878d52c5f280cdc326b76)) - **misconf:** check if for-each is known when expanding dyn block ([#&#8203;8808](https://github.com/aquasecurity/trivy/issues/8808)) ([5706603](https://github.com/aquasecurity/trivy/commit/570660314698472ab831a7e0d55044e0b1e9c6c0)) - **misconf:** use argument value in WithIncludeDeprecatedChecks ([#&#8203;8942](https://github.com/aquasecurity/trivy/issues/8942)) ([7e9a54c](https://github.com/aquasecurity/trivy/commit/7e9a54cd6bf4bc15e485c6233d140b389e432fe5)) - more revive rules ([#&#8203;8814](https://github.com/aquasecurity/trivy/issues/8814)) ([3ab459e](https://github.com/aquasecurity/trivy/commit/3ab459e3b674f319bf349d478917a531a69754c0)) - octalLiteral from go-critic ([#&#8203;8811](https://github.com/aquasecurity/trivy/issues/8811)) ([a19e0aa](https://github.com/aquasecurity/trivy/commit/a19e0aa1ba0350198c898fd57c9405fbf38fa432)) - **redhat:** Also try to find buildinfo in root layer (layer 0) ([#&#8203;8924](https://github.com/aquasecurity/trivy/issues/8924)) ([906b037](https://github.com/aquasecurity/trivy/commit/906b037cff97060267d20f8947f429e078419d66)) - **redhat:** save contentSets for OS packages in fs/vm modes ([#&#8203;8820](https://github.com/aquasecurity/trivy/issues/8820)) ([9256804](https://github.com/aquasecurity/trivy/commit/9256804df8577d8a746fb8b97c508c247ab82f8f)) - **redhat:** trim invalid suffix from content_sets in manifest parsing ([#&#8203;8818](https://github.com/aquasecurity/trivy/issues/8818)) ([fa1077b](https://github.com/aquasecurity/trivy/commit/fa1077bbf5863a519f6f180a600afe5e2d6180d8)) - **server:** add missed Relationship field for `rpc` ([#&#8203;8872](https://github.com/aquasecurity/trivy/issues/8872)) ([38f17c9](https://github.com/aquasecurity/trivy/commit/38f17c945e3ef7784607037c0457fb1e06a99959)) - use-any from revive ([#&#8203;8810](https://github.com/aquasecurity/trivy/issues/8810)) ([883c63b](https://github.com/aquasecurity/trivy/commit/883c63bf29568f0feab37e5d36ae1c417eef88f5)) - **vex:** use `lo.IsNil` to check `VEX` from OCI artifact ([#&#8203;8858](https://github.com/aquasecurity/trivy/issues/8858)) ([e97af98](https://github.com/aquasecurity/trivy/commit/e97af9806ab13e1ec8b792e0586b486c4982c170)) - **wolfi:** support new APK database location ([#&#8203;8937](https://github.com/aquasecurity/trivy/issues/8937)) ([b15d9a6](https://github.com/aquasecurity/trivy/commit/b15d9a60e6a3ed40811d5ca6387082266ae92ea7)) ##### Performance Improvements - **secret:** only match secrets of meaningful length, allow example strings to not be matched ([#&#8203;8602](https://github.com/aquasecurity/trivy/issues/8602)) ([60fef1b](https://github.com/aquasecurity/trivy/commit/60fef1b615a765248c5870b814ba0c4345220c0e)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - Every minute ( * */1 * * * ) in timezone US/Central, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40MS4yIiwidXBkYXRlZEluVmVyIjoiNDAuNDEuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiaW1hZ2UiXX0=-->
renovate-bot force-pushed renovate/mirror.gcr.io-aquasec-trivy-0.x from 967b5077cc to 57e217213b 2025-06-05 03:05:25 +00:00 Compare
renovate-bot force-pushed renovate/mirror.gcr.io-aquasec-trivy-0.x from 57e217213b to bba062401d 2025-06-05 04:37:30 +00:00 Compare
alexlebens merged commit 7c2a7141ec into main 2025-06-05 04:38:01 +00:00
alexlebens deleted branch renovate/mirror.gcr.io-aquasec-trivy-0.x 2025-06-05 04:38:02 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
Renovate
Issue generated by Renovate.
automerge
This PR will be automerged by Renovate.
chart
Chart update generated by Renovate.
image
Image update generated by Renovate.
stale
PR or Issue that has not been updated recently.
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
gitea-bot renovate-bot alexlebens
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: alexlebens/infrastructure#581
No description provided.
Delete Branch "renovate/mirror.gcr.io-aquasec-trivy-0.x"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?