simar7
b2933f565d
bump trivy version to v0.51.1 ( #353 )
...
* bump trivy version to v0.51.1
* update tests
2 weeks ago
Nikita Pivkin
6f8c23760b
update tests ( #334 )
...
* update tests
* rename trivy images
* rename workflow steps
2 weeks ago
Calin Marina
0f287db5d3
feat(image): add `--docker-host` option for GH Action users ( #267 )
...
* add option to update docker-host via cli parameter
* chore: update test results
---------
Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>
2 months ago
Martin Kemp
5f1841df8d
Update Trivy to 0.48.1 ( #291 )
...
* Update Trivy to 0.48.1
Signed-off-by: Martin Kemp <me@martinke.mp>
* update tests
---------
Signed-off-by: Martin Kemp <me@martinke.mp>
Co-authored-by: Simar <simar@linux.com>
5 months ago
Ivan Santos
91713af97d
Update to trivy version 0.48.0 ( #289 )
...
* Update to trivy version 0.48.0
---------
Signed-off-by: Simar <simar@linux.com>
Co-authored-by: Simar <simar@linux.com>
5 months ago
Kyle Davies
22d2755f77
feature(config): add terraform variable files ( #285 )
...
* Action now takes an input for terraform variable filess
* added tf-vars
* updated README.md
* Updated yamlconfig test to latest version of trivy output for that container
* updated for correct cpu type
* test trivy version change to 0.45.0
* run scan with correct parameters
* Added test for terraform tfvars
* Updated output for other tests
* use test data as path and updated tf vars to be relative
* removed quiet
6 months ago
Brandon Helms
b77b85c025
Update Dockerfile to 0.46.0 ( #274 )
...
* Update Dockerfile to 0.46.0
This will address bugs before 0.46.0
* updating tests
7 months ago
simar7
fbd16365eb
feat(trivy): Bump to v0.45.0 ( #256 )
9 months ago
simar7
3dd517d8c9
chore(deps): Update trivy to v0.43.1 ( #243 )
...
* chore(deps): Update trivy to v0.43.1
* fix tests
Signed-off-by: Simar <simar@linux.com>
---------
Signed-off-by: Simar <simar@linux.com>
10 months ago
Simar
41f05d9ecf
Revert "Include args when using trivy config file ( #231 )"
...
Fixes: https://github.com/aquasecurity/trivy-action/issues/238
This reverts commit 82ec0dd604
.
11 months ago
Daniel Chabr
0cd397afbf
bump trivy to v0.42.1 ( #240 )
...
* bump trivy to v0.42.1
* revert formatting
12 months ago
Daniel Chabr
f96f79aa22
bump trivy to v0.42.0 ( #237 )
...
* chore(deps): update trivy to v0.42.0
* revert formatting
* revert formatting again
* update sarif version in tests
12 months ago
Herman Wika Horn
82ec0dd604
Include args when using trivy config file ( #231 )
...
Previously, arguments provided using regular flags
were ignored if a trivy config file was provided
Note that this pull request makes no effort to
deduce or merge desired argument if the same
configuration with different values are provided
both within the config file and as flags. Behaviour
for this case would develop on the implementation
of trivy
12 months ago
Bruce Bujon
e5f43133f6
chore: Update Trivy to 0.40.0 ( #223 )
...
* chore: Update trivy to 0.39.0
* chore: Update trivy to 0.40.0
1 year ago
Viktor Sadovnikov
1f0aa582c8
Rename security-checks to scanners ( #211 )
...
* Renaming securityChecks to runners
* Renaming securityChecks to runners
* Renaming securityChecks to runners
* Correcting README
1 year ago
DmitriyLewen
43849adf01
bump trivy to v0.38.1 ( #215 )
1 year ago
Falk Puschner
8bd2f9fbda
⬆️ bump trivy action ( #203 )
1 year ago
simar7
cff3e9a7f6
feat(trivy): Bump Trivy to v0.37.1 ( #199 )
...
Signed-off-by: Simar <simar@linux.com>
1 year ago
Aibek
9ab158e859
Add 0.34.0 release ( #177 )
...
* bump to ghcr.io/aquasecurity/trivy:0.33.0
* fix tests
* bump to 0.34.0
2 years ago
simar7
1db49f5326
feat(trivy): Bump Trivy to v0.31.0 ( #165 )
...
Fixes: https://github.com/aquasecurity/trivy-action/issues/164
Signed-off-by: Simar <simar@linux.com>
Signed-off-by: Simar <simar@linux.com>
2 years ago
Carol Valencia
0d7cf2ddfb
chore: improve message output sbom with gh ( #145 )
...
* fix: merge with master- entrypoint
* chore: gitignore .vscode
Co-authored-by: carolina valencia <krol3@users.noreply.github.com>
2 years ago
simar7
5144f05a8d
fix(config): Drop mixing of options with yaml config. ( #148 )
...
Also adds some documentation explaining how the config
and flags are used in conjunction with each other.
Fixes: https://github.com/aquasecurity/trivy-action/issues/147
Signed-off-by: Simar <simar@linux.com>
2 years ago
simar7
81b9a6f5ab
Update Dockerfile ( #152 )
2 years ago
simar7
503d3abc15
feat(yaml): Add support for trivy.yaml ( #143 )
...
* feat(yaml): Add support for trivy.yaml
Signed-off-by: Simar <simar@linux.com>
* chore: fixing test using trivy v 0.30.0
* chore(deps): Update to use Trivy v0.30.2
Signed-off-by: Simar <simar@linux.com>
Co-authored-by: carolina valencia <krol3@users.noreply.github.com>
2 years ago
simar7
bc615ae2d7
fix(tests): Update test golden files for Trivy v0.29.2 ( #136 )
...
Fixes: https://github.com/aquasecurity/trivy-action/issues/133
Fixes: https://github.com/aquasecurity/trivy-action/issues/135
Signed-off-by: Simar <simar@linux.com>
2 years ago
simar7
7b7aa264d8
feat(SBOM): Support SBOM generation ( #129 )
...
* feat(sbom): Support SBOM generation
Signed-off-by: Simar <simar@linux.com>
* Update README.md
Co-authored-by: Itay Shakury <itay@itaysk.com>
* feat(sbom): Send results within the entrypoint.sh
* fix(sbom): Fix leading whitespaces for format var.
Signed-off-by: Simar <simar@linux.com>
* docs(sbom): Update README.md
* docs(sbom): Update README.md
* chore(trivy): Bump Trivy version to 0.29.1
Signed-off-by: Simar <simar@linux.com>
* feat(sbom): Change to fs scan.
Signed-off-by: Simar <simar@linux.com>
* fix(tests): Update SARIF goldenfile
Co-authored-by: Itay Shakury <itay@itaysk.com>
2 years ago
Carol Valencia
49e970d7ac
chore: pinning 0.29.0 trivy ( #128 )
...
Co-authored-by: carolina valencia <krol3@users.noreply.github.com>
2 years ago
Achton Smidt Winther
2b22459068
Update tests for 0.28.1 and convert to JSON ( #126 )
...
* Fix bug with test for securityChecks option which caused it to be skipped.
* Convert tests to JSON output only, and update them for Trivy 0.28.1.
* Update CI test to use Trivy 0.28.1.
2 years ago
Achton Smidt Winther
4b3b5f928b
Add support for --ignorefile option (.trivyignore) ( #122 )
...
* Add support for supplying one or more .trivyignore files.
* Fix gitignore for test data.
* Add test for trivyignores option.
* Be explicit about the trivy options we use during testing.
* Add documentation of trivyignores option.
2 years ago
Carol Valencia
4b9b6fb4ef
chore: update test to version 0.27.1 ( #106 )
...
* chore: update test to version 0.27.0
* chore: add test file secret and update to 0.27.1
* fix: support repository with securityCheck secret
Co-authored-by: carolina valencia <krol3@users.noreply.github.com>
2 years ago
Carol Valencia
2b30463ddb
chore: Update trivy version to 0.26.0 ( #102 )
...
* chore: Update trivy version to 0.25.3
* feat: trivy fs - securityCheck test
* chore: update trivy 0.26.0
Co-authored-by: carolina valencia <krol3@users.noreply.github.com>
2 years ago
Carol Valencia
40c4ca9e74
feat: bash unit test - adding repo ( #101 )
...
* feat: bash unit test - adding repo
* fix: clean dummy data
Co-authored-by: carolina valencia <krol3@users.noreply.github.com>
2 years ago