Releases: DmitriyLewen/trivy
Releases · DmitriyLewen/trivy
v0.40.1
v0.40.0
Changelog
- 77bb6bb update CI/CD settings for release
- 7811ad0 docs: update info about config file (aquasecurity#6547)
- fae710d docs: remove RELEASE_VERSION from trivy.repo (aquasecurity#6546)
- d2d4022 fix(sbom): change error to warning for multiple OSes (aquasecurity#6541)
- 164b025 fix(vuln): skip empty versions (aquasecurity#6542)
- 5dd9bd4 feat(c): add license support for conan lock files (aquasecurity#6329)
- 7c2017f fix(terraform): Attribute and fileset fixes (aquasecurity#6544)
- 63c9469 refactor: change warning if no vulnerability details are found (aquasecurity#6230)
- aa822c2 refactor(misconf): improve error handling in the Rego scanner (aquasecurity#6527)
- 30cc88f ci: use tmp dir inside Trivy repo dir for GoReleaser (aquasecurity#6533)
- e32215c feat(go): parse main module of go binary files (aquasecurity#6530)
- d4da83c chore(deps): bump golang.org/x/net from 0.21.0 to 0.23.0 (aquasecurity#6526)
- 0d7d97d refactor(misconf): simplify the retrieval of module annotations (aquasecurity#6528)
- 9873cf3 chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (aquasecurity#6523)
- 95c8fd9 docs(nodejs): add info about supported versions of pnpm lock files (aquasecurity#6510)
- 12ec0df feat(misconf): loading embedded checks as a fallback (aquasecurity#6502)
- 9b7d713 fix(misconf): Parse JSON k8s manifests properly (aquasecurity#6490)
- 13e72ec refactor: remove parallel walk (aquasecurity#5180)
- a986199 fix: close pom.xml (aquasecurity#6507)
- 46d5aba fix(secret): convert severity for custom rules (aquasecurity#6500)
- 34ab09d fix(java): update logic to detect
pom.xmlfile snapshot artifacts from remote repositories (aquasecurity#6412) - 1ba5b59 fix: typo (aquasecurity#6283)
- 4fab0f8 docs(k8s,image): fix command-line syntax issues (aquasecurity#6403)
- d770981 chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (aquasecurity#6435)
- 4337068 fix(misconf): avoid panic if the scheme is not valid (aquasecurity#6496)
- d82d6cb feat(image): goversion as stdlib (aquasecurity#6277)
- cfddfb3 fix: add color for error inside of log message (aquasecurity#6493)
- dfcb0f9 chore(deps): bump actions/add-to-project from 0.4.1 to 1.0.0 (aquasecurity#6438)
- 183eaaf docs: fix links to OPA docs (aquasecurity#6480)
- 94d6e8c refactor: replace zap with slog (aquasecurity#6466)
- 336c47e docs: update links to IaC schemas (aquasecurity#6477)
- 06b4473 chore: bump Go to 1.22 (aquasecurity#6075)
- a51cedd refactor(terraform): sync funcs with Terraform (aquasecurity#6415)
- 53517d6 feat(misconf): add helm-api-version and helm-kube-version flag (aquasecurity#6332)
- ad544e9 chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.4.0 to 1.5.1 (aquasecurity#6426)
- 089368d chore(deps): bump github.com/go-openapi/strfmt from 0.22.0 to 0.23.0 (aquasecurity#6452)
- 1163565 chore(deps): bump github.com/hashicorp/golang-lru/v2 from 2.0.6 to 2.0.7 (aquasecurity#6430)
- 637da2b chore(deps): bump aquaproj/aqua-installer from 2.2.0 to 3.0.0 (aquasecurity#6437)
- 13190e9 fix(terraform): eval submodules (aquasecurity#6411)
- 6bca7c3 refactor(terraform): remove unused options (aquasecurity#6446)
- 8e4279b refactor(terraform): remove unused file (aquasecurity#6445)
- e98c873 chore(deps): bump github.com/testcontainers/testcontainers-go to v0.28.0 (aquasecurity#6387)
- b1c2eab chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.9.0 to 1.10.0 (aquasecurity#6427)
- 1c49a16 fix(misconf): Escape template value correctly (aquasecurity#6292)
- 8dd0fcd feat(misconf): add support for wildcard ignores (aquasecurity#6414)
- 74e4c6e fix(cloudformation): resolve
DedicatedMasterEnabledparsing issue (aquasecurity#6439) - 245c120 refactor(terraform): remove metrics collection (aquasecurity#6444)
- 86714bf feat(cloudformation): add support for logging and endpoint access for EKS (aquasecurity#6440)
- a758392 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.1 to 1.53.1 (aquasecurity#6424)
- 4d00d8b chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.4 to 1.27.10 (aquasecurity#6428)
- 3ad2b3e chore(deps): bump go.etcd.io/bbolt from 1.3.8 to 1.3.9 (aquasecurity#6429)
- 8baccd7 fix(db): check schema version for image name only (aquasecurity#6410)
- e75a90f chore(deps): bump github.com/google/wire from 0.5.0 to 0.6.0 (aquasecurity#6425)
- 6625bd3 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.149.1 to 1.155.1 (aquasecurity#6433)
- 826fe60 chore(deps): bump actions/cache from 4.0.0 to 4.0.2 (aquasecurity#6436)
- f23ed77 feat(misconf): Support private registries for misconf check bundle (aquasecurity#6327)
- df024e8 feat(cloudformation): inline ignore support for YAML templates (aquasecurity#6358)
- 29dee32 feat(terraform): ignore resources by nested attributes (aquasecurity#6302)
- 1a67472 perf(helm): load in-memory files (aquasecurity#6383)
- 09e37b7 feat(aws): apply filter options to result (aquasecurity#6367)
- 87a9aa6 feat(aws): quiet flag support (aquasecurity#6331)
- 712dcd3 fix(misconf): clear location URI for SARIF (aquasecurity#6405)
- 625f22b test(cloudformation): add CF tests (aquasecurity#6315)
- 6a2f6fd fix(cloudformation): infer type after resolving a function (aquasecurity#6406)
- 5f69937 fix(sbom): fix error when parent of SPDX Relationships is not a package. (aquasecurity#6399)
- 258d153 fix(nodejs): merge
Indirect,Dev,ExternalReferencesfields for same deps frompackage-lock.jsonfiles v2 or later (aquasecurity#6356) - ade033a docs: add info about support for package license detection in
fs/repomodes (aquasecurity#6381) - f85c9fa fix(nodejs): add support for parsing
workspacesfrompackage.jsonas an object (aquasecurity#6231) - 9d7f5c9 fix: use
0600perms for tmp files for post analyzers (aquasecurity#6386) - f148eb1 fix(helm): scan the subcharts once (aquasecurity#6382)
- 97f95c4 docs(terraform): add file patterns for Terraform Plan (aquasecurity#6393)
- abd62ae fix(terraform): сhecking SSE encryption algorithm validity (aquasecurity#6341)
- 7c409fd fix(java): parse modules from
pom.xmlfiles once (aquasecurity#6312) - 1b68327 chore(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible (aquasecurity#6364)
- a2482c1 fix(server): add Locations for
Packagesin client/server mode (aquasecurity#6366) - e866bd5 fix(sbom): add check for
CreationInfoto nil when detecting SPDX created using Trivy (aquasecurity#6346) - 1870f28 fix(report): don't include empty strings in
.vulnerabilities[].identifiers[].urlwhengitlab.tplis used (aquasecurity#6348) - 6c81e55 chore(ubuntu): Add Ubuntu 22.04 EOL date (aquasecurity#6371)
- 8ec3938 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 (aquasecurity#6321)
- f6c5d58 feat(java): add support licenses and graph for gradle lock files (aquasecurity#6140)
- c4022d6 feat(vex): consider root component for relationships (aquasecurity#6313)
- 3177924 fix: increase the default buffer size for scanning dpkg status files by 2 times (aquasecurity#6298)
- dd9620e chore: updates wazero to v1.7.0 (aquasecurity#6301)
- eb3ceb3 feat(sbom): Support license detection for SBOM scan (aquasecurity#6072)
- ab74caa refactor(sbom): use intermediate representation for SPDX (aquasecurity#6310)
- 71da44f docs(terraform): improve documentation for filtering by inline comments (aquasecurity#6284)
- 102b6df fix(terraform): fix policy document retrieval (aquasecurity#6276)
- aa19aaf refactor(terraform): remove unused custom error (aquasecurity#6303)
- 8fcef35 refactor(sbom): add intermediate representation for BOM (aquasecurity#6240)
- fb8c516 fix(amazon): check only major version of AL to find advisories (aquasecurity#6295)
- 96bd7ac fix(db): use schema version as tag only for
trivy-dbandtrivy-java-dbregistries by default (aquasecurity#6219) - 12c5bf0 fix(nodejs): add name validation for package name from
package.json(aquasecurity#6268) - d6c40ce docs: Added install instructions for FreeBSD (aquasecurity#6293)
- 9d2057a feat(image): customer podman host or socket option (aquasecurity#6256)
- 2a9d9bd chore(deps): bump wazero from 1.2.1 to 1.6.0 (aquasecurity#6290)
- 617c3e3 feat(java): mark dependencies from
maven-invoker-pluginintegration tests pom.xml files asDev(aquasecurity#6213) - 56cedc0 fix(license): reorder logic of how python package licenses are acquired (aquasecurity#6220)
- d7d7265 test(terraform): skip cached modules (aquasecurity#6281)
- 6639911 feat(secret): Support for detecting Hugging Face Access Tokens (aquasecurity#6236)
- 337cb75 fix(cloudformation): support of all SSE algorithms for s3 (aquasecurity#6270)
- 9361cdb feat(terraform): Terraform Plan snapshot scanning support (aquasecurity#6176)
- ee01e6e chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.26.6 to 1.27.4 (aquasecurity#6249)
- 3d2f583 fix: typo function name and comment optimization (aquasecurity#6200)
- c4b5ab7 fix(java): don't ignore runtime scope for pom.xml files (aquasecurity#6223)
- 355c1b5 chore(deps): bump helm/kind-action from 1.8.0 to 1.9.0 (aquasecurity#6242)
- 7244ece chore(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 (aquasecurity#6243)
- 5cd0566 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.48.1 to 1.51.1 (aquasecurity#6251)
- ebb74a5 chore(deps): bump github.com/hashicorp/go-uuid from 1.0.1 to 1.0.3 (aquasecurity#6253)
- 24a8d6a chore(deps): bump github.com/open-policy-agent/opa from 0.61.0 to 0.62.0 (aquasecurity#6250)
- 9d0d7ad chore(deps): bump github.com/containerd/containerd from 1.7.12 to 1.7.13 (aquasecurity#6247)
- e8230e1 chore(deps): bump go.uber.org/zap from 1.26.0 to 1.27.0 (aquasecurity#6246)
- 04535b5 fix(license): add FilePath to results to allow for license path filtering via trivyignore file (aquasecurity#6215)
- 939e34e chore(deps): Upgrade iac deps (aquasecurity#6255)
- 7cb6c02 feat: add info log message about dev deps suppression (aquasecurity#6211)
- c1d26ec test(k8s): use test-db for k8s integration tests (aquasecurity#6222)
- 4f70468 ci: add maximize-build-space for
Testjob (aquasecurity#6221) - 1dfece8 fix(terraform): fix root module search (aquasecurity#6160)
- e1ea02c test(parser): squash test data for yarn (aquasecurity#6203)
- 64926d8 fix(terraform): do not re-expand dynamic blocks (aquasecurity#6151)
- eb54bb5 docs: update ecosystem page reporting with db app (aquasecurity#6201)
- dc76c6e fix: k8s summary separate infra and user finding results (aquasecurity#6120)
- 1b7e474 fix: add context to target finding on k8s table view (aquasecurity#6099)
- 876ab84 fix: Printf format err (aquasecurity#6198)
- eef7c4f refactor: better integration of the parser into Trivy (aquasecurity#6183)
- 069aae5 chore(deps): bump helm.sh/helm/v3 from 3.14.1 to 3.14.2 (aquasecurity#6189)
- 4a9ac6d feat(terraform): Add hyphen and non-ASCII support for domain names in credential extraction (aquasecurity#6108)
- 9c5e5a0 fix(vex): CSAF filtering should consider relationships (aquasecurity#5923)
- 388f476 refactor(report): Replacing
source_locationingithubreport when scanning an image (aquasecurity#5999) - cd3e4bc feat(vuln): ignore vulnerabilities by PURL (aquasecurity#6178)
- ce81c05 feat(java): add support for fetching packages from rep...
v0.38.10
v0.38.9
v0.38.6
v0.38.0
Changelog
- 2cfbe22 test revert 32 bit
- f105279 fix(report): return severity colors in table format (aquasecurity#4969)
- bc2b0ca build: maximize available disk space for release (aquasecurity#4937)
- 9493c6f test(cli): Fix assertion helptext (aquasecurity#4966)
- b0359de chore(deps): Bump defsec to v0.91.1 (aquasecurity#4965)
- d3a34e4 test: validate CycloneDX with the JSON schema (aquasecurity#4956)
- 798ef1b fix(server): add licenses to the Result message (aquasecurity#4955)
- e8cf281 fix(aws): resolve endpoint if endpoint is passed (aquasecurity#4925)
- f18b0db fix(sbom): move licenses to
namefield in Cyclonedx format (aquasecurity#4941) - a796701 add only uniq deps in dependsOn (aquasecurity#4943)
- b544e0d use testify instead of gotest.tools (aquasecurity#4946)
- 067a0fc fix(nodejs): do not detect lock file in node_modules as an app (aquasecurity#4949)
- e6d7705 bump go-dep-parser (aquasecurity#4936)
- c584dc1 chore(deps): bump github.com/openvex/go-vex from 0.2.0 to 0.2.1 (aquasecurity#4914)
- 358d56b chore(deps): bump helm/kind-action from 1.7.0 to 1.8.0 (aquasecurity#4909)
- 17f3ea9 chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore (aquasecurity#4912)
- 39ccbf7 test(aws): move part of unit tests to integration (aquasecurity#4884)
- 6d3ae3b docs(cli): update help string for file and dir skipping (aquasecurity#4872)
- 7d7a1ef chore(deps): bump sigstore/cosign-installer (aquasecurity#4910)
- fc74950 chore(deps): bump github.com/sosedoff/gitkit from 0.3.0 to 0.4.0 (aquasecurity#4916)
- b2a68bc chore(deps): bump k8s.io/api from 0.27.3 to 0.27.4 (aquasecurity#4918)
- e5c0c15 chore(deps): bump github.com/secure-systems-lab/go-securesystemslib (aquasecurity#4919)
- da37803 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/sts (aquasecurity#4913)
- 9744e64 chore(deps): bump github.com/magefile/mage from 1.14.0 to 1.15.0 (aquasecurity#4915)
- 99eebc6 docs: update the discussion template (aquasecurity#4928)
- d19c7d9 feat(repo): support local repositories (aquasecurity#4890)
- 3c19761 bump go-dep-parser (aquasecurity#4893)
- e1c2a8c fix(misconf): add missing fields to proto (aquasecurity#4861)
- 8b8e0e8 fix: remove trivy-db package replacement (aquasecurity#4877)
- f9efe44 chore(test): bump the integration test timeout to 15m (aquasecurity#4880)
- 7271d68 chore(deps): Update defsec to v0.91.0 (aquasecurity#4886)
- c3bc67c chore: update CODEOWNERS (aquasecurity#4871)
- 232ba82 feat(vuln): support vulnerability status (aquasecurity#4867)
- 11618c9 feat(misconf): Support custom URLs for policy bundle (aquasecurity#4834)
- 0707569 refactor: replace with sortable packages (aquasecurity#4858)
- fbe1c9e docs: correct license scanning sample command (aquasecurity#4855)
- 20c2246 fix(report): close the file (aquasecurity#4842)
- 24a3e54 feat(nodejs): add support for include-dev-deps flag for yarn (aquasecurity#4812)
- a7bd7bb feat(misconf): Add support for independently enabling libraries (aquasecurity#4070)
- 4aa9ea0 feat(secret): add secret config file for cache calculation (aquasecurity#4837)
- 5d349d8 Fix a link in gitlab-ci.md (aquasecurity#4850)
- a61531c fix(flag): use globalstar to skip directories (aquasecurity#4854)
- 78cc209 chore(deps): bump github.com/docker/docker from v23.0.5+incompatible to v23.0.7-0.20230714215826-f00e7af96042+incompatible (aquasecurity#4849)
- 9399604 fix(license): using common way for splitting licenses (aquasecurity#4434)
- 3e2416d fix(containerd): Use img platform in exporter instead of strict host platform (aquasecurity#4477)
- ce77bb4 remove govulndb (aquasecurity#4783)
- c05caae fix(java): inherit licenses from parents (aquasecurity#4817)
- aca11b9 refactor: add allowed values for CLI flags (aquasecurity#4800)
- 4cecd17 add example regex to allow rules (aquasecurity#4827)
- 4bc8d29 feat(misconf): Support custom data for rego policies for cloud (aquasecurity#4745)
- 88243a0 docs: correcting the trivy k8s tutorial (aquasecurity#4815)
- 3c7d988 feat(cli): add --tf-exclude-downloaded-modules flag (aquasecurity#4810)
- fd0fd10 fix(sbom): cyclonedx recommendations should include fixed versions for each package (aquasecurity#4794)
- d0d543b feat(misconf): enable --policy flag to accept directory and files both (aquasecurity#4777)
- b43a3e6 feat(python): add license fields (aquasecurity#4722)
- aef7b14 fix: support trivy k8s-version on k8s sub-command (aquasecurity#4786)
- 5d76aba chore(deps): Update defsec to v0.90.3 (aquasecurity#4793)
- fed446c chore(deps): bump google.golang.org/protobuf from 1.30.0 to 1.31.0 (aquasecurity#4752)
- df62927 chore(deps): bump alpine from 3.18.0 to 3.18.2 (aquasecurity#4748)
- 1b9b9a8 chore(deps): bump github.com/alicebob/miniredis/v2 from 2.30.3 to 2.30.4 (aquasecurity#4758)
- 3c16ca8 docs(image): fix the comment on the soft/hard link (aquasecurity#4740)
- e5bee5c check Type when filling pkgs in vulns (aquasecurity#4776)
- 4b9f310 feat: add support of linux/ppc64le and linux/s390x architectures for Install.sh script (aquasecurity#4770)
- 8e7fb7c chore(deps): bump modernc.org/sqlite from 1.20.3 to 1.23.1 (aquasecurity#4756)
- a9badea fix(rocky): add architectures support for advisories (aquasecurity#4691)
- f8ebccc chore(deps): bump github.com/opencontainers/image-spec (aquasecurity#4751)
- 1c81948 chore(deps): bump github.com/package-url/packageurl-go (aquasecurity#4754)
- 497cc10 chore(deps): bump golang.org/x/sync from 0.2.0 to 0.3.0 (aquasecurity#4750)
- 065f0af chore(deps): bump github.com/tetratelabs/wazero from 1.2.0 to 1.2.1 (aquasecurity#4755)
- e260305 chore(deps): bump github.com/testcontainers/testcontainers-go (aquasecurity#4759)
- 0621402 fix: documentation about reseting trivy image (aquasecurity#4733)
- 798fdbc fix(suse): Add openSUSE Leap 15.5 eol date as well (aquasecurity#4744)
- 34a8929 fix: update Amazon Linux 1 EOL (aquasecurity#4761)
- 6008192 chore(deps): Update defsec to v0.90.1 (aquasecurity#4739)
- 73734ea feat(nodejs): support yarn workspaces (aquasecurity#4664)
- 22463ab feat(cli): add include-dev-deps flag (aquasecurity#4700)
- 790c805 fix(image): pass the secret scanner option to scan the img config (aquasecurity#4735)
- 86fec9c fix: scan job pod it not found on k8s-1.27.x (aquasecurity#4729)
- 26bc911 feat(docker): add support for mTLS authentication when connecting to registry (aquasecurity#4649)
- d699e8c chore(deps): Update defsec to v0.90.0 (aquasecurity#4723)
- 1777878 fix: skip scanning the gpg-pubkey package (aquasecurity#4720)
- 9be0825 Fix http registry oci pull (aquasecurity#4701)
- 5d73b47 feat(misconf): Support skipping services (aquasecurity#4686)
- 46e784c docs: fix supported modes for pubspec.lock files (aquasecurity#4713)
- 0f61a84 fix(misconf): disable the terraform plan analyzer for other scanners (aquasecurity#4714)
- 8a1aa44 clarifying a dir path is required for custom policies (aquasecurity#4716)
- fbab9ee chore: update alpine base images (aquasecurity#4715)
- f84417b fix last-history-created (aquasecurity#4697)
- 85c681d feat: kbom and cyclonedx v1.5 spec support (aquasecurity#4708)
- 46748ce docs: add information about Aqua (aquasecurity#4590)
- c6741bd fix: k8s escape resource filename on windows os (aquasecurity#4693)
- a21acc7 ci: ignore merge queue branches (aquasecurity#4696)
- 32a3a33 chore(deps): bump actions/checkout from 2.4.0 to 3.5.3 (aquasecurity#4695)
- cbb47dc chore(deps): bump aquaproj/aqua-installer from 2.1.1 to 2.1.2 (aquasecurity#4694)
- e3d10d2 feat: cyclondx sbom custom property support (aquasecurity#4688)
- e1770e0 ci: do not trigger tests in main (aquasecurity#4692)
- 337c0b7 add SUSE Linux Enterprise Server 15 SP5 and update SP4 eol date (aquasecurity#4690)
- 5ccee14 use group field for jar in cyclonedx (aquasecurity#4674)
- 96db52c feat(java): capture licenses from pom.xml (aquasecurity#4681)
- 3e902a5 feat(helm): make sessionAffinity configurable (aquasecurity#4623)
- 904f1cf fix: Show the correct URL of the secret scanning (aquasecurity#4682)
- 7d48c5d document expected file pattern definition format (aquasecurity#4654)
- dcc73e9 fix: format arg error (aquasecurity#4642)
- 35c4262 feat(k8s): cyclonedx kbom support (aquasecurity#4557)
- 0e01851 fix(nodejs): remove unused fields for the pnpm lockfile (aquasecurity#4630)
- 4d9b444 fix(vm): update ext4-filesystem parser for parse multi block extents (aquasecurity#4616)
- c29197a ci: update build IDs (aquasecurity#4641)
- d7637ad fix(debian): update EOL for Debian 12 (aquasecurity#4647)
- ef39eee chore(deps): bump go-containerregistry (aquasecurity#4639)
- 1ce8bb5 chore: unnecessary use of fmt.Sprintf (S1039) (aquasecurity#4637)
- bc9513f fix(db): change argument order in Exists query for JavaDB (aquasecurity#4595)
- aecd2f0 feat(aws): Add support to see successes in results (aquasecurity#4427)
- 2cbf402 chore(deps): bump golangci/golangci-lint-action from 3.5.0 to 3.6.0 (aquasecurity#4613)
- 0099b20 ci: do not trigger tests in main (aquasecurity#4614)
- a597a54 chore(deps): bump sigstore/cosign-installer (aquasecurity#4609)
- b453fbe chore(deps): bump CycloneDX/gh-gomod-generate-sbom from 1 to 2 (aquasecurity#4608)
- 0e876d5 ci: bypass the required status checks (aquasecurity#4611)
- a4f27d2 ci: support merge queue (aquasecurity#3652)
- 9e6411e ci: matrix build for testing (aquasecurity#4587)
- ef6538a feat: trivy k8s private registry support (aquasecurity#4567)
- 139f3e1 docs: add general coverage page (aquasecurity#3859)
- 479cfdd chore: create SECURITY.md (aquasecurity#4601)
- 9a279fa ci: remove 32bit packages (aquasecurity#4585)
- d52b0b7 fix(misconf): deduplicate misconf results (aquasecurity#4588)
- 9b531fa fix(vm): support sector size of 4096 (aquasecurity#4564)
- 8ca1bfd fix(misconf): terraform relative paths (aquasecurity#4571)
- c20d466 fix(purl): skip unsupported library type (aquasecurity#4577)
- 52cbe79 fix(terraform): recursively detect all Root Modules (aquasecurity#4457)
- 4a5b915 fix(vm): support post analyzer for vm command (aquasecurity#4544)
- 56cdc55 fix(nodejs): change the type of the devDependencies field (aquasecurity#4560)
- 17d7536 fix(sbom): export empty dependencies in CycloneDX (aquasecurity#4568)
- 2796abe refactor: add composite fs for post-analyzers (aquasecurity#4556)
- 22a1573 chore(deps): bump golangci/golangci-lint-action from 3.4.0 to 3.5.0 (aquasecurity#4554)
- 4358665 chore(deps): bump helm/kind-action from 1.5.0 to 1.7.0 (aquasecurity#4526)
- 5081399 chore(deps): bump github.com/BurntSushi/toml from 1.2.1 to 1.3.0 (aquasecurity#4528)
- e1a3812 chore(deps): bump github.com/alicebob/miniredis/v2 from 2.30.2 to 2.30.3 (aquasecurity#4529)
- 283eef6 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 (aquasecurity#4536)
- bbd7b98 chore(deps): bump github.com/tetratelabs/wazero from 1.0.0 to 1.2.0 (aquasecurity#4549)
- 11c81bf chore(deps): bump github.com/spf13/cast from 1.5.0 to 1.5.1 (aquasecurity#4532)
- 2d8d63e chore(deps): bump github.com/testcontainers/testcontainers-go (aquasecurity#4537)
- a46839b chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 (aquasecurity#4530)
- 19715f5 chore(deps): bump github.com/aws/aws-sdk-go-v2/config (aquasecurity#4534)
- 854b639 chore(deps): bump github.com/sigstore/rekor from 1.2.0 to 1.2.1 (aquasecurity#4533)
- 59e1a86 chore(deps): bump alpine from 3.17.3 to 3.18.0 (aquasecurity#4525)
- 9ef0113 feat: add SBOM analyzer (aquasecurity#4210)
- dadd1e1 fix(sbom): update logic for work with files in spdx format (aquasecurity#4513)...