v0.65.0 #9287
aqua-bot
announced in
Announcements
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
📑 Table of Contents
🚀 What's new? 🚀
sarifreport 📈👷♂️ Notable Fixes 🛠️
🚀 What's new? 🚀
🐧 AlmaLinux 10 Support 🔟
Trivy now supports vulnerability scanning for AlmaLinux 10 (latest major release)
Thanks to @wololowarrior
📦 Package Type Filtering for License Scanning 🔍
The
--pkg-typesflag now works for license scanning, allowing you to filter license detection by package type (osorlibrary).Thanks to @mastacheata
🐳 Automatic Docker Context Resolution 🔌
Trivy now automatically detects and uses your active Docker context when scanning images with the
dockersource. This enhancement ensures seamless integration with different Docker environments, including Docker Desktop, Colima, Podman, and other Docker-compatible runtimes. You can still use any of the exiting configuration options to override automatic context detection.For more information see here.
🔖 Git Repository Metadata in Reports 📊
Trivy now automatically extracts and includes git repository metadata in JSON scan reports when scanning git repositories using the
repoorfssubcommands. This provides valuable context about the codebase being scanned, including commit details, authorship, branch information, and tags.Example snippet from JSON output:
{ "Metadata": { "RepoURL": "https://github.com/aquasecurity/trivy-db", "Branch": "main", "Tags": ["v0.2.0", "latest"], "Commit": "378cf9606fe23bdb47639e29a4fb525ed7645e09", "CommitMsg": "Migrate logging to structured logging with slog...", "Author": "knqyf263 <[email protected]>", "Committer": "knqyf263 <[email protected]>" } }🔐 SHA-512 Hash Support for CycloneDX SBOM 🛡️
When generating or processing CycloneDX SBOMs, SHA-512 hashes are now automatically included and recognized.
Thanks to @attiand
🪛 CVSS vectors for sarif report 📈
Trivy now includes CVSS metrics in sarif reports.
You can see them in the
propertyfield:Thanks to @axidex
🛑 Graceful Shutdown Support 🔄
Trivy now handles interruption signals (SIGINT/SIGTERM) gracefully, allowing ongoing operations to complete before shutting down. Press Ctrl+C once to initiate graceful shutdown, or twice to force immediate termination.
$ trivy image alpine:3.19 ^C INFO Attempting graceful shutdown... Press Ctrl+C again to force exit INFO Shutting down...In server mode, active requests are given time to complete:
$ trivy server --listen localhost:8080 ^C INFO Shutting down server... INFO Waiting for active requests to complete... INFO Server exited👷♂️ Notable Fixes 🛠️
/var/lib/rpmmanifest/container-manifest-2. #9100 (Thanks to @tofay)filepathwhen removing duplicate packages #9142GFDL-NIV-1.1andGFDL-NIV-1.2into Trivy mapping #9116WITHoperator #9230/var/lib/dpkg/*/<package>.md5sumsto find list of system files #9046providerwhen looking indpkg#9118.egg-info/METADATA#9171 (Thanks to @amitverse)Beta Was this translation helpful? Give feedback.
All reactions