8000 feat: add `--vuln-severity-source` flag by DmitriyLewen · Pull Request #8269 · aquasecurity/trivy · GitHub
[go: up one dir, main page]
Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: add --vuln-severity-source flag #8269

Merged
merged 24 commits into from
Mar 3, 2025
Merged

feat: add --vuln-severity-source flag #8269

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
24 commits
Select commit Hold shift + click to select a range
0b18682
chore(deps): use fork of trivy-db
DmitriyLewen Jan 21, 2025
8c5850a
feat(flag): add `severity-src` flag
DmitriyLewen Jan 21, 2025
b777a44
feat(option): add `severity-src` option
DmitriyLewen Jan 21, 2025
db5d038
feat(vulnerability): use `severity-src` to parse severity
DmitriyLewen Jan 21, 2025
43fdd91
Merge branch 'main' into 'feat/severity-src'
DmitriyLewen Jan 22, 2025
fd80cc3
refactor: move severitySrc flag from report to vulnerability
DmitriyLewen Jan 22, 2025
f34f174
docs: mage docs:generate
DmitriyLewen Jan 22, 2025
ab4af75
feat: add severitySrc for `rpc`
DmitriyLewen Jan 22, 2025
011dcdb
test: add unit tests for fillInfo
DmitriyLewen Jan 22, 2025
3261f41
test: add integration tests
DmitriyLewen Jan 22, 2025
74c9954
docs: add info about --severitySrc flag
DmitriyLewen Jan 22, 2025
4a0748b
fix: linter errors
DmitriyLewen Jan 22, 2025
28199b6
refactor: add vulnID in warning
DmitriyLewen Jan 22, 2025
20ccbda
test: add SeveritySrc in required tests
DmitriyLewen Jan 22, 2025
bd45e4f
chore(deps): bump github.com/aquasecurity/trivy-db
DmitriyLewen Jan 24, 2025
c8187f0
Merge branch 'main' into 'feat/severity-src'
DmitriyLewen Feb 19, 2025
fbf0c1b
test: update tests
DmitriyLewen Feb 19, 2025
0f42477
refactor: rename severity-src to vuln-severity-src
DmitriyLewen Feb 25, 2025
db27331
docs: mage docs:generate
DmitriyLewen Feb 25, 2025
2999049
refactor: use SourceID instead of string
DmitriyLewen Feb 25, 2025
413b047
refactor: reuse getSeverity function
DmitriyLewen Feb 25, 2025
8b965df
refactor: use vulnerability.severity-src for config file
DmitriyLewen Feb 27, 2025
ee721a7
Merge branch 'main' into 'feat/severity-src'
DmitriyLewen Mar 3, 2025
620bc23
refactor: rename `vulnSeveritySrc` to `vulnSeveritySources`
DmitriyLewen Mar 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Next Next commit
chore(deps): use fork of trivy-db
  • Loading branch information
@DmitriyLewen
DmitriyLewen committed Jan 21, 2025
commit 0b18682174b1049983536b43bdd9bd17161a7c59
4 changes: 3 additions & 1 deletion go.mod
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -393,7 +393,7 @@ require (
golang.org/x/sys v0.28.0 // indirect
golang.org/x/telemetry v0.0.0-20240522233618-39ace7a40ae7 // indirect
golang.org/x/time v0.8.0 // indirect
golang.org/x/tools v0.26.0 // indirect
golang.org/x/tools v0.28.0 // indirect
google.golang.org/api v0.206.0 // indirect
google.golang.org/genproto v0.0.0-20241104194629-dd2ea8efbc28 // indirect
google.golang.org/genproto/googleapis/api v0.0.0-20241209162323-e6fa225c2576 // indirect
Expand Down Expand Up @@ -429,3 +429,5 @@ require (
tags.cncf.io/container-device-interface v0.8.0 // 8000 indirect
tags.cncf.io/container-device-interface/specs-go v0.8.0 // indirect
)

replace github.com/aquasecurity/trivy-db => github.com/DmitriyLewen/trivy-db v0.0.0-20250121072428-fb8c5ead3c64
8 changes: 4 additions & 4 deletions go.sum
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -257,6 +257,8 @@ github.com/DATA-DOG/go-sqlmock v1.5.2 h1:OcvFkGmslmlZibjAjaHm3L//6LiuBgolP7Oputl
github.com/DATA-DOG/go-sqlmock v1.5.2/go.mod h1:88MAG/4G7SMwSE3CeA0ZKzrT5CiOU3OJ+JlNzwDqpNU=
github.com/DataDog/zstd v1.5.5 h1:oWf5W7GtOLgp6bciQYDmhHHjdhYkALu6S/5Ni9ZgSvQ=
github.com/DataDog/zstd v1.5.5/go.mod h1:g4AWEaM3yOg3HYfnJ3YIawPnVdXJh9QME85blwSAmyw=
github.com/DmitriyLewen/trivy-db v0.0.0-20250121072428-fb8c5ead3c64 h1:nPovX3lR3DQEgmOP8OtmBH1OIX8uhMTwxqlAuyAeMYg=
github.com/DmitriyLewen/trivy-db v0.0.0-20250121072428-fb8c5ead3c64/go.mod h1:/hse/SN0Tl4kGM+9THwlCXBIuMyr5K6RlNepte70mdU=
github.com/GoogleCloudPlatform/docker-credential-gcr v2.0.5+incompatible h1:juIaKLLVhqzP55d8x4cSVgwyQv76Z55/fRv/UBr2KkQ=
github.com/GoogleCloudPlatform/docker-credential-gcr v2.0.5+incompatible/go.mod h1:BB1eHdMLYEFuFdBlRMb0N7YGVdM5s6Pt0njxgvfbGGs=
github.com/Intevation/gval v1.3.0 h1:+Ze5sft5MmGbZrHj06NVUbcxCb67l9RaPTLMNr37mjw=
Expand Down Expand Up @@ -357,8 +359,6 @@ github.com/aquasecurity/tml v0.6.1 h1:y2ZlGSfrhnn7t4ZJ/0rotuH+v5Jgv6BDDO5jB6A9gw
github.com/aquasecurity/tml v0.6.1/go.mod h1:OnYMWY5lvI9ejU7yH9LCberWaaTBW7hBFsITiIMY2yY=
github.com/aquasecurity/trivy-checks v1.4.0 h1:XFGPuA8C4f31GO9g7xOkubHq4W87y9iXrWnulsIoZFs=
github.com/aquasecurity/trivy-checks v1.4.0/go.mod h1:TSUbI3wBy9jgQl5lRUCR+B5pNiOxp6M26Jep8VCL/eM=
github.com/aquasecurity/trivy-db v0.0.0-20241209111357-8c398f13db0e h1:O5j5SeCNBrXApgBTOobO06q4LMxJxIhcSGE7H6Y154E=
github.com/aquasecurity/trivy-db v0.0.0-20241209111357-8c398f13db0e/go.mod h1:gS8VhlNxhraiq60BBnJw9kGtjeMspQ9E8pX24jCL4jg=
github.com/aquasecurity/trivy-java-db v0.0.0-20240109071736-184bd7481d48 h1:JVgBIuIYbwG+ekC5lUHUpGJboPYiCcxiz06RCtz8neI=
github.com/aquasecurity/trivy-java-db v0.0.0-20240109071736-184bd7481d48/go.mod h1:Ldya37FLi0e/5Cjq2T5Bty7cFkzUDwTcPeQua+2M8i8=
github.com/aquasecurity/trivy-kubernetes v0.6.7-0.20241101182546-89bffc3932bc h1:/mFBYIK9RY+L8s1CIbQbJ5B3v0YmoDSu5eAzavvMa+Y=
Expand Down Expand Up @@ -1833,8 +1833,8 @@ golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc
golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
golang.org/x/tools v0.17.0/go.mod h1:xsh6VxdV005rRVaS6SSAf9oiAqljS7UZUacMZ8Bnsps=
golang.org/x/tools v0.26.0 h1:v/60pFQmzmT9ExmjDv2gGIfi3OqfKoEP6I5+umXlbnQ=
golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
golang.org/x/tools v0.28.0 h1:WuB6qZ4RPCQo5aP3WdKZS7i595EdWqWR8vqJTlwTVK8=
golang.org/x/tools v0.28.0/go.mod h1:dcIOrVd3mfQKTgrDVQHqCPMWy6lnhfhtX3hLXYVLfRw=
golang.org/x/vuln v1.1.3 h1:NPGnvPOTgnjBc9HTaUx+nj+EaUYxl5SJOWqaDYGaFYw=
golang.org/x/vuln v1.1.3/go.mod h1:7Le6Fadm5FOqE9C926BCD0g12NWyhg7cxV4BwcPFuNY=
golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
Expand Down
0