Stage/vuls
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • f31cf230ab chore(deps): bump github.com/samber/lo from 1.44.0 to 1.46.0 (#1992) master dependabot[bot] 2024-07-16 04:17:22 +09:00
  • ed0d1b8312 chore(deps): bump github.com/emersion/go-smtp from 0.21.2 to 0.21.3 (#1991) dependabot[bot] 2024-07-16 04:16:11 +09:00
  • 24ae273f7e chore(deps): bump the aws group with 5 updates (#1990) dependabot[bot] 2024-07-16 04:09:05 +09:00
  • ab624670fb chore(deps): bump google.golang.org/grpc from 1.64.0 to 1.64.1 (#1988) dependabot[bot] 2024-07-11 05:57:48 +09:00
  • a00fe47e5f chore(deps): bump the aws group with 3 updates (#1987) dependabot[bot] 2024-07-09 23:28:49 +09:00
  • d4f7550d66 chore(deps): bump github.com/aquasecurity/trivy from 0.52.2 to 0.53.0 (#1984) dependabot[bot] 2024-07-05 09:08:36 +09:00
  • 1333f3ac94 fix(scanner/suse): skip new line in zyper -q lu (#1986) MaineK00n 2024-07-04 16:22:13 +09:00
  • ac55380bd7 chore(deps): bump github.com/samber/lo from 1.39.0 to 1.44.0 (#1985) dependabot[bot] 2024-07-04 14:16:22 +09:00
  • 109891e917 chore(deps): bump goreleaser/goreleaser-action from 5 to 6 (#1981) dependabot[bot] 2024-07-04 14:12:59 +09:00
  • 4633c04d59 chore(deps): bump the aws group with 5 updates (#1983) dependabot[bot] 2024-07-04 14:09:29 +09:00
  • 5db0fdb5d8 chore(deps): bump docker/build-push-action from 5 to 6 (#1982) dependabot[bot] 2024-07-04 14:03:22 +09:00
  • a76302c111 feat(cve/nvd): support CVSS v4.0 (#1979) MaineK00n 2024-07-04 13:39:16 +09:00
  • 492cae6dff feat(contrib/trivy): support CVSS v4.0 MaineK00n/trivy-to-vuls-cvssv4.0 MaineK00n 2024-07-01 14:16:50 +09:00
  • d8173cdd42 feat(cve/mitre): support go-cve-dictionary:mitre (#1978) MaineK00n 2024-06-29 16:35:06 +09:00
  • 9beb5fc9f0 chore(deps): bump github.com/hashicorp/go-getter from 1.7.4 to 1.7.5 (#1976) dependabot[bot] 2024-06-26 16:01:20 +09:00
  • 0b4dfa0b31 chore(deps): bump the aws group with 5 updates (#1974) dependabot[bot] 2024-06-26 16:00:52 +09:00
  • 0a47a26553 chore(deps): update goval-dictionary (#1973) MaineK00n 2024-06-25 17:28:47 +09:00
  • 86d3681d8d fix(config/os): Fix EOL date of ubuntu 23.10 (#1972) v0.26.0 Shunichi Shinohara 2024-06-18 16:20:48 +09:00
  • 436341a4a5 feat: update EOL and Windows KB list (#1971) MaineK00n 2024-06-18 16:13:59 +09:00
  • 2cd2d1a9a2 chore(deps): bump github.com/aquasecurity/trivy from 0.52.1 to 0.52.2 (#1969) dependabot[bot] 2024-06-18 07:08:39 +09:00
  • 3ba0cea6e3 chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (#1970) dependabot[bot] 2024-06-18 07:06:39 +09:00
  • 52fa3a0e31 refactor(report/s3): remove deprecated method for s3 endpoint (#1967) MaineK00n 2024-06-17 21:43:52 +09:00
  • ad4f66d551 style(log): saas s3 upload error log (#1966) future-ryunosuketanai 2024-06-17 17:37:49 +09:00
  • 1e82e04991 chore(deps): bump github.com/aquasecurity/trivy from 0.51.4 to 0.52.1 (#1961) dependabot[bot] 2024-06-13 17:16:17 +09:00
  • 995f57ec0c chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity (#1964) dependabot[bot] 2024-06-12 22:02:50 +09:00
  • 40d2c8ff6a chore(deps): bump golang.org/x/oauth2 from 0.20.0 to 0.21.0 (#1962) dependabot[bot] 2024-06-12 18:57:52 +09:00
  • 8abed7a43c chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.8.0 to 0.9.0 (#1960) dependabot[bot] 2024-06-12 17:40:22 +09:00
  • 48949237b8 chore(deps): bump golang.org/x/text from 0.15.0 to 0.16.0 (#1959) dependabot[bot] 2024-06-12 17:35:42 +09:00
  • 3958dde312 chore(deps): bump the aws group with 5 updates (#1958) dependabot[bot] 2024-06-12 17:31:23 +09:00
  • 7f79b8eadf feat(config/os): add alpine 3.19, 3.20 EOL (#1965) MaineK00n 2024-06-12 17:18:20 +09:00
  • cb26be180a fix(ci): Remove unused files to avoid disk full (#1957) v0.26.0-rc2 Shunichi Shinohara 2024-06-09 12:32:21 +09:00
  • 6e0a0a93ca fix(build): Remove unused files to avoid disk full v0.26.0-alpha3 Shunichi Shinohara 2024-06-09 10:21:01 +09:00
  • e1fab805af fix(debian,ubuntu): collect running kernel source package (#1935) MaineK00n 2024-06-06 21:20:16 +09:00
  • 5af1a22733 fix(redhat-based): collect running kernel packages (#1950) MaineK00n 2024-06-06 10:28:40 +09:00
  • 0533069446 chore(deps): bump docker/setup-buildx-action from 2 to 3 (#1955) dependabot[bot] 2024-06-03 18:15:00 +09:00
  • 3e1f2bc88b chore(deps): bump docker/setup-qemu-action from 2 to 3 (#1954) dependabot[bot] 2024-06-03 18:09:09 +09:00
  • 368c496d40 chore(deps): bump docker/metadata-action from 4 to 5 (#1953) dependabot[bot] 2024-06-03 18:06:18 +09:00
  • a99e3af3fe chore(deps): bump golangci/golangci-lint-action from 3 to 6 (#1952) dependabot[bot] 2024-06-03 17:59:19 +09:00
  • 1769107382 chore(deps): bump github/codeql-action from 2 to 3 (#1951) dependabot[bot] 2024-06-03 17:58:27 +09:00
  • 2e5884b9bd chore(deps): bump github.com/aquasecurity/trivy from 0.51.2 to 0.51.4 (#1938) dependabot[bot] 2024-05-29 16:41:11 +09:00
  • cc9734d5e4 chore(deps): use github.com/Azure/azure-sdk-for-go/sdk/storage/azblob (#1661) MaineK00n 2024-05-28 19:31:21 +09:00
  • 227208b60b chore(deps): bump github.com/BurntSushi/toml from 1.3.2 to 1.4.0 (#1949) dependabot[bot] 2024-05-28 11:24:39 +09:00
  • 949d72d0b7 chore(deps): bump actions/setup-go from 3 to 5 (#1946) dependabot[bot] 2024-05-28 11:24:29 +09:00
  • 2f02918064 chore(deps): bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 (#1948) dependabot[bot] 2024-05-28 11:24:10 +09:00
  • 73917188d5 chore(deps): bump the aws group with 2 updates (#1947) dependabot[bot] 2024-05-28 11:04:29 +09:00
  • 980c1ff262 chore(deps): bump docker/build-push-action from 2 to 5 (#1945) dependabot[bot] 2024-05-28 10:59:59 +09:00
  • 58bb6c7e09 chore(deps): bump actions/checkout from 3 to 4 (#1944) dependabot[bot] 2024-05-28 10:59:40 +09:00
  • 977fe0ca49 chore(deps): bump goreleaser/goreleaser-action from 4 to 5 (#1943) dependabot[bot] 2024-05-28 10:53:57 +09:00
  • 474c76e7a7 chore(deps): bump docker/login-action from 2 to 3 (#1942) dependabot[bot] 2024-05-28 10:53:23 +09:00
  • 5116a6a23d feat(ci): group aws-sdk-go-v2 updates, check github actions update (#1941) MaineK00n 2024-05-28 10:39:13 +09:00
  • 8449f2e295 chore(deps): bump github.com/aws/aws-sdk-go-v2/credentials (#1936) dependabot[bot] 2024-05-28 10:27:54 +09:00
  • db2c502b4a feat(reporter/s3): support minio (#1930) MaineK00n 2024-05-28 10:13:39 +09:00
  • 337eb0b281 chore(deps): bump github.com/aws/aws-sdk-go from 1.53.0 to 1.53.9 (#1934) dependabot[bot] 2024-05-24 19:31:37 +09:00
  • d8bce94d8c chore(deps): use aws-sdk-go-v2 (#1922) MaineK00n 2024-05-24 19:08:38 +09:00
  • 9107d1b1bc chore(deps): bump github.com/aquasecurity/trivy from 0.51.1 to 0.51.2 (#1928) dependabot[bot] 2024-05-23 05:13:59 +09:00
  • 407407d306 fix(contrib/trivy-to-vuls): remove cvss/severity duplicates, list all severities (#1929) MaineK00n 2024-05-22 17:16:02 +09:00
  • dccdd8a091 chore(deps): bump github.com/package-url/packageurl-go from 0.1.2 to 0.1.3 (#1927) dependabot[bot] 2024-05-21 15:13:50 +09:00
  • 878c25bf5a feat(detector, contrib/trivy-to-vuls): collect vendor severity and cvss (#1921) v0.25.4 MaineK00n 2024-05-17 19:11:51 +09:00
  • e4728e3881 fix(gost/debian): show all severities that appeared (#1914) MaineK00n 2024-05-16 18:01:01 +09:00
  • 61c39637f2 feat(scanner/redhat): each package has modularitylabel (#1381) MaineK00n 2024-05-16 02:54:02 +09:00
  • f1c384812a chore(deps): bump github.com/aquasecurity/trivy from 0.50.1 to 0.51.1 (#1912) dependabot[bot] 2024-05-15 22:37:12 +09:00
  • 0fa09e1517 chore(deps): bump github.com/emersion/go-smtp from 0.21.1 to 0.21.2 (#1918) dependabot[bot] 2024-05-14 10:51:15 +09:00
  • ef2be3d6ea feat(detect/redhat): detect unpatched vulnerabilities with oval, stop using gost (#1907) v0.25.3 MaineK00n 2024-05-10 17:32:40 +09:00
  • 827f2cb8d8 chore(deps): bump golang.org/x/oauth2 from 0.19.0 to 0.20.0 (#1910) dependabot[bot] 2024-05-08 07:10:05 +09:00
  • 4cb4ec4dda chore(deps): bump golang.org/x/text from 0.14.0 to 0.15.0 (#1909) dependabot[bot] 2024-05-08 03:04:23 +09:00
  • 81f3d5f3bd chore(deps): bump go.etcd.io/bbolt from 1.3.9 to 1.3.10 (#1908) dependabot[bot] 2024-05-08 02:30:02 +09:00
  • f3f667138d feat(ubuntu): add 24.04 noble (#1878) MaineK00n 2024-05-02 16:56:42 +09:00
  • bca59ff85f chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (#1903) dependabot[bot] 2024-04-30 15:04:15 +09:00
  • 3f98fbc82c style(log) fix trivy scan page link (#1902) future-ryunosuketanai 2024-04-25 19:20:42 +09:00
  • 73dc95f6b9 fix(detector/suse): support when advisory.cves has both NVD and SUSE evaluations (#1899) MaineK00n 2024-04-23 16:30:33 +09:00
  • 04bdaabe6b chore(deps): bump golang.org/x/net from 0.22.0 to 0.23.0 (#1898) dependabot[bot] 2024-04-21 22:52:03 +09:00
  • 8f4025120d (fix) Exclude dev dependencies from npm's package-lock.json and Fix Java DB download endpoint (#1893) Shunichi Shinohara 2024-04-17 17:23:57 +09:00
  • cfbe47bd99 chore: fix some typos in comments (#1897) deferdeter 2024-04-16 18:14:00 +08:00
  • a6cafabfb8 style(log) config.toml template docs url (#1894) future-ryunosuketanai 2024-04-16 12:11:28 +09:00
  • d1137ad1ca chore(deps): bump github.com/emersion/go-smtp from 0.21.0 to 0.21.1 (#1896) dependabot[bot] 2024-04-16 10:35:18 +09:00
  • 6181e1c4bb chore(deps): bump golang.org/x/sync from 0.6.0 to 0.7.0 (#1890) dependabot[bot] 2024-04-10 18:19:54 +09:00
  • 5f0abc971f chore(deps): bump golang.org/x/oauth2 from 0.18.0 to 0.19.0 (#1891) dependabot[bot] 2024-04-10 17:56:53 +09:00
  • 3cdd2e10d0 chore(deps): bump github.com/emersion/go-smtp from 0.20.2 to 0.21.0 (#1888) dependabot[bot] 2024-04-05 17:41:41 +09:00
  • 867bf63bb2 TLS insecure option adding (#1220) Konstantin Eremin 2024-04-05 07:12:47 +03:00
  • 5d5dcd5f41 chore(deps): bump github.com/aquasecurity/trivy from 0.49.1 to 0.50.1 (#1885) dependabot[bot] 2024-03-28 13:09:49 +09:00
  • e25ec99968 chore(deps): bump github.com/aws/aws-sdk-go from 1.49.21 to 1.51.5 (#1881) v0.25.2 dependabot[bot] 2024-03-22 16:27:34 +09:00
  • 50580f6e98 feat(wpscan): support enterprise feature (#1875) future-ryunosuketanai 2024-03-22 16:17:16 +09:00
  • 472df0e1b6 chore(deps): update dictionary modules (#1877) MaineK00n 2024-03-22 16:10:50 +09:00
  • 7d5a47bc33 chore(deps): bump github.com/docker/docker (#1880) dependabot[bot] 2024-03-21 13:22:24 +09:00
  • 99cf9dbccd feat(detector/library): update JAR-like files' Name/Version in library list (#1874) Shunichi Shinohara 2024-03-19 15:17:37 +09:00
  • e1df74cbc1 fix(amazon): use major version for checking eol, security advisories (#1873) MaineK00n 2024-03-18 16:13:54 +09:00
  • 426eb53af5 chore(deps): bump github.com/jackc/pgx/v5 from 5.5.1 to 5.5.4 (#1872) dependabot[bot] 2024-03-15 09:49:26 +09:00
  • bda089b589 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 (#1871) dependabot[bot] 2024-03-14 15:13:37 +09:00
  • 02d1f6f59e chore(deps): bump golang.org/x/oauth2 from 0.17.0 to 0.18.0 (#1868) dependabot[bot] 2024-03-12 04:02:19 +09:00
  • 75c1956635 fix(build): Change timeout to 60 minutes (#1867) v0.25.1 Shunichi Shinohara 2024-03-11 10:08:51 +09:00
  • 5af322632f fix(build): Change timeout to 60 minutes v0.25.1-beta2 Shunichi Shinohara 2024-03-08 14:25:44 +09:00
  • 18b4cbb3fa Add 2 hour timeout v0.25.1-beta1 Shunichi Shinohara 2024-03-08 14:25:44 +09:00
  • b8320c05d2 fix(scanner): output all results even if all fail (#1866) v0.25.0 MaineK00n 2024-03-07 22:07:32 +09:00
  • be7b9114cc feat(PackageURL):add package URL for library scan result (#1862) tk007 2024-03-06 23:21:15 -08:00
  • bf14b5f61f fix(detector): library.Scan move to detector (#1864) MaineK00n 2024-03-06 16:59:06 +09:00
  • dc496468b9 refactor(config): move syslogconf to config/syslog package (#1865) MaineK00n 2024-03-05 18:11:45 +09:00
  • 54dae08f54 chore(deps): bump go.uber.org/zap from 1.26.0 to 1.27.0 (#1861) dependabot[bot] 2024-03-05 15:45:01 +09:00
  • d1f9233409 Avoid to use sync.Once inside trivy javadb Updater (#1859) Shunichi Shinohara 2024-03-05 15:23:45 +09:00
  • eed4328e2c chore(deps): bump helm.sh/helm/v3 from 3.14.0 to 3.14.2 (#1856) dependabot[bot] 2024-02-28 16:38:43 +09:00
  • 05e0f05f5a fix(ci): use go version of go.mod (#1858) MaineK00n 2024-02-28 16:20:55 +09:00