From 2d04be4f50eeb7e0011c2b349c14f1c4e7d1ffeb Mon Sep 17 00:00:00 2001 From: secureCodeBoxBot Date: Tue, 16 Nov 2021 09:31:37 +0000 Subject: [PATCH 1/4] Upgrading trivy from 0.20.2 to 0.21.0 Signed-off-by: secureCodeBoxBot ## Release changes : ## Changelog efdb29d fix(sarif): fix validation errors (#1376) 9bcf9e7 docs: add Bitbucket Pipelines (#1374) 3147097 docs: add community integrations (#1361) 33f74b3 Use a stable SARIF identifier (#1230) 5915ffb fix(python): fix parsing of requirements.txt with hash checking mode available in pip since version 8.0 ae4c42b feat(iac): Add line information (#1366) 19747d0 feat(cloudformation): Adding support for cfsec IaC scanning (#1360) da45061 chore: send debug and info logs to stdout in install.sh, not stderr. (#1264) cb1a4ed Update containerd to v1.5.7 and docker-cli to v20.10.9 (#1356) 69dae54 chore: update SBOM generation (#1349) ## Docker images - `docker pull aquasec/trivy:0.21.0` - `docker pull ghcr.io/aquasecurity/trivy:0.21.0` - `docker pull public.ecr.aws/aquasecurity/trivy:0.21.0` --- scanners/trivy/Chart.yaml | 2 +- scanners/trivy/README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/scanners/trivy/Chart.yaml b/scanners/trivy/Chart.yaml index e19e51a62d..26081f0fc4 100644 --- a/scanners/trivy/Chart.yaml +++ b/scanners/trivy/Chart.yaml @@ -8,7 +8,7 @@ description: A Helm chart for the trivy security scanner that integrates with th type: application # version - gets automatically set to the secureCodeBox release version when the helm charts gets published version: v3.1.0-alpha1 -appVersion: "0.20.2" +appVersion: "v0.21.0" kubeVersion: ">=v1.11.0-0" annotations: versionApi: https://api.github.com/repos/aquasecurity/trivy/releases/latest diff --git a/scanners/trivy/README.md b/scanners/trivy/README.md index 87336643de..40110e1cc6 100644 --- a/scanners/trivy/README.md +++ b/scanners/trivy/README.md @@ -3,7 +3,7 @@ title: "Trivy" category: "scanner" type: "Container" state: "released" -appVersion: "0.20.2" +appVersion: "v0.21.0" usecase: "Container Vulnerability Scanner" --- From ac73c817babe9ab03ff66f01a50f31f83715b7bc Mon Sep 17 00:00:00 2001 From: Ilyes Ben Dlala Date: Tue, 16 Nov 2021 14:43:52 +0100 Subject: [PATCH 2/4] matched the appVersion to the Docker Image Signed-off-by: Ilyes Ben Dlala --- scanners/trivy/Chart.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scanners/trivy/Chart.yaml b/scanners/trivy/Chart.yaml index 26081f0fc4..7c9c318cc4 100644 --- a/scanners/trivy/Chart.yaml +++ b/scanners/trivy/Chart.yaml @@ -8,7 +8,7 @@ description: A Helm chart for the trivy security scanner that integrates with th type: application # version - gets automatically set to the secureCodeBox release version when the helm charts gets published version: v3.1.0-alpha1 -appVersion: "v0.21.0" +appVersion: "0.21.0" kubeVersion: ">=v1.11.0-0" annotations: versionApi: https://api.github.com/repos/aquasecurity/trivy/releases/latest From f6bd4a52866e5344159fb157af2f23a8aeda66d0 Mon Sep 17 00:00:00 2001 From: Ilyesbdlala Date: Tue, 16 Nov 2021 13:44:34 +0000 Subject: [PATCH 3/4] Updating Helm Docs Signed-off-by: GitHub Actions --- scanners/trivy/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scanners/trivy/README.md b/scanners/trivy/README.md index 40110e1cc6..25113deb71 100644 --- a/scanners/trivy/README.md +++ b/scanners/trivy/README.md @@ -3,7 +3,7 @@ title: "Trivy" category: "scanner" type: "Container" state: "released" -appVersion: "v0.21.0" +appVersion: "0.21.0" usecase: "Container Vulnerability Scanner" --- From b87e4c272655e82cf4d2185544ff6a5e1c42062f Mon Sep 17 00:00:00 2001 From: Ilyes Ben Dlala Date: Tue, 16 Nov 2021 15:15:18 +0100 Subject: [PATCH 4/4] Empty commit to run CI Signed-off-by: Ilyes Ben Dlala