Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🌱 Update Builder Image group #1372

Merged
merged 1 commit into from
Aug 11, 2024
Merged

🌱 Update Builder Image group #1372

merged 1 commit into from
Aug 11, 2024

Conversation

syself-bot[bot]
Copy link
Contributor

@syself-bot syself-bot bot commented Jul 1, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change
docker.io/aquasec/trivy (source) stage minor 0.52.1 -> 0.54.1
docker.io/hadolint/hadolint stage digest 7dba9a9 -> 3c206a4
docker.io/library/alpine stage patch 3.20.0 -> 3.20.2
docker.io/library/golang final digest 810dd33 -> 1e3c713

Release Notes

aquasecurity/trivy (docker.io/aquasec/trivy)

v0.54.1

Compare Source

Changelog

  • 854c61d release: v0.54.1 [release/v0.54] (#​7282)
  • 334a1c2 fix(flag): incorrect behavior for deprected flag --clear-cache [backport: release/v0.54] (#​7285)
  • f61725c fix(java): Return error when trying to find a remote pom to avoid segfault [backport: release/v0.54] (#​7283)
  • a7b7117 fix(plugin): do not call GitHub content API for releases and tags [backport: release/v0.54] (#​7279)

v0.54.0

Compare Source

Features
Bug Fixes
  • Add dependencyManagement exclusions to the child exclusions (#​6969) (dc68a66)
  • add missing platform and type to spec (#​7149) (c8a7abd)
  • cli: error on missing config file (#​7154) (7fa5e7d)
  • close file when failed to open gzip (#​7164) (2a577a7)
  • dotnet: don't include non-runtime libraries into report for *.deps.json files (#​7039) (5bc662b)
  • dotnet: show nuget package dir not found log only when checking nuget packages (#​7194) (d76feba)
  • ignore nodes when listing permission is not allowed (#​7107) (25f8143)
  • java: avoid panic if deps from pom in it dir are not found (#​7245) (4e54a7e)
  • java: use go-mvn-version to remove Package duplicates (#​7088) (a7a304d)
  • misconf: do not evaluate TF when a load error occurs (#​7109) (f27c236)
  • nodejs: detect direct dependencies when using latest version for files yarn.lock + package.json (#​7110) (54bb8bd)
  • report: hide empty table when all secrets/license/misconfigs are ignored (#​7171) (c3036de)
  • secret: skip regular strings contain secret patterns (#​7182) (174b1e3)
  • secret: trim excessively long lines (#​7192) (92b13be)
  • secret: update length of hugging-face-access-token (#​7216) (8c87194)
  • server: pass license categories to options (#​7203) (9d52018)
Performance Improvements
  • debian: use bytes.Index in emptyLineSplit to cut allocation (#​7065) (acbec05)

v0.53.0

Compare Source

⚠ BREAKING CHANGES
  • k8s: node-collector dynamic commands support (#​6861)
  • add clean subcommand (#​6993)
  • aws: Remove aws subcommand (#​6995)
Features
Bug Fixes

v0.52.2

Compare Source

Changelog

  • 8709d4f release: v0.52.2 [release/v0.52] (#​6896)
  • a4b8ad7 ci: use ubuntu-latest-m runner [backport: release/v0.52] (#​6933)
  • 2b711bc chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 [backport: release/v0.52] (#​6919)
  • 191d31e test: bump docker API to 1.45 [backport: release/v0.52] (#​6922)
  • 3f5874c ci: bump github.com/goreleaser/goreleaser to v2.0.0 [backport: release/v0.52] (#​6893)
  • 8f8c76a fix(debian): take installed files from the origin layer [backport: release/v0.52] (#​6892)

Configuration

📅 Schedule: Branch creation - "on the first day of the month" in timezone Europe/Berlin, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

@syself-bot syself-bot bot added type/patch update/container size/XS Denotes a PR that changes 0-20 lines, ignoring generated files. area/github Changes made in the github directory labels Jul 1, 2024
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch from 8138dc4 to 70209a4 Compare July 2, 2024 11:02
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch 2 times, most recently from 689c8ce to 83ce717 Compare July 23, 2024 11:08
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch 2 times, most recently from cba7a24 to d339840 Compare July 31, 2024 11:03
@syself-bot
🌱 Update Builder Image group
c877140 
| datasource | package                  | from   | to     |
| ---------- | ------------------------ | ------ | ------ |
| docker     | docker.io/aquasec/trivy  | 0.52.1 | 0.54.1 |
| docker     | docker.io/library/alpine | 3.20.0 | 3.20.2 |
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch from d339840 to c877140 Compare August 1, 2024 11:03
@batistein batistein merged commit 08f2453 into main Aug 11, 2024
10 of 12 checks passed
@batistein batistein deleted the renovate/caph-builder-image branch August 11, 2024 09:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
area/github Changes made in the github directory size/XS Denotes a PR that changes 0-20 lines, ignoring generated files. type/patch update/container
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@batistein