Releases: aquasecurity/trivy-operator
Releases · aquasecurity/trivy-operator
v0.18.0-rc
Changelog
✨ Notable Changes ✨
- 3c3cd02: feat: kbom and k8s core component scan (#1646) (@chen-keinan)
- 53e6b0d: feat: trivy fs -include-dev-deps support (#1669) (@chen-keinan)
🐛 Notable Fixes 🐛
- 8278ead: fix: hang node collector node shutdown (#1714) (@chen-keinan)
- 3911b56: fix: kubelet checks via config resource (#1712) (@chen-keinan)
- b38cd49: fix: missing reports on via cluster sbom cache (#1713) (@chen-keinan)
- e4aba45: fix: remove duplicate entry in the CRDs list (#1684) (@BenjaminHerbert)
- 9fea2e7: fix: sbom secret size limit (#1683) (@chen-keinan)
🔧 Miscellaneous 🔧
- 42dfa7d: chore: trivy 0.48.1 dep update (#1715) (@chen-keinan)
👷 Other work 👷
- 551ffee: Fix typo in nav (#1686) (@evankanderson)
- 5680146: build(deps): bump actions/setup-go from 4 to 5 (#1691) (@dependabot[bot])
- 44ea898: build(deps): bump actions/setup-python from 4.7.1 to 5.0.0 (#1690) (@dependabot[bot])
- 1df3205: build(deps): bump actions/stale from 8 to 9 (#1692) (@dependabot[bot])
- 3f44cec: build(deps): bump github.com/aws/aws-sdk-go from 1.48.11 to 1.48.16 (#1693) (@dependabot[bot])
- ade4a38: build(deps): bump github.com/aws/aws-sdk-go from 1.48.16 to 1.49.4 (#1705) (@dependabot[bot])
- 6e4690c: build(deps): bump github.com/aws/aws-sdk-go from 1.48.4 to 1.48.11 (#1672) (@dependabot[bot])
- 6c84b50: build(deps): bump github.com/aws/aws-sdk-go from 1.49.4 to 1.49.9 (#1719) (@dependabot[bot])
- 3e317db: build(deps): bump github.com/go-logr/logr from 1.3.0 to 1.4.1 (#1718) (@dependabot[bot])
- 592c5d4: build(deps): bump github.com/google/go-containerregistry (#1671) (@dependabot[bot])
- c11b4a5: build(deps): bump github.com/google/uuid from 1.4.0 to 1.5.0 (#1717) (@dependabot[bot])
- 945fec9: build(deps): bump github.com/onsi/ginkgo/v2 from 2.13.1 to 2.13.2 (#1674) (@dependabot[bot])
- d85e956: build(deps): bump golang.org/x/net from 0.18.0 to 0.19.0 (#1673) (@dependabot[bot])
- 1e6b951: build(deps): bump k8s.io/apiextensions-apiserver from 0.28.3 to 0.29.0 (#1716) (@dependabot[bot])
- d72e8c4: build(deps): bump k8s.io/cli-runtime from 0.28.4 to 0.29.0 (#1704) (@dependabot[bot])
- 952a187: build(deps): bump sigstore/cosign-installer from 3.2.0 to 3.3.0 (#1689) (@dependabot[bot])
Contributors
BenjaminHerbert, evankanderson, and 2 other contributors
Assets 20
v0.17.1
Changelog
🐛 Notable Fixes 🐛
- afeaf27: fix: scan job fail nil pointer (#1664) (@chen-keinan)
👷 Other work 👷
- 5e961fe: build(deps): bump github.com/aws/aws-sdk-go from 1.48.0 to 1.48.4 (#1661) (@dependabot[bot])
Contributors
chen-keinan and dependabot
Assets 20
v0.17.0
Changelog
✨ Notable Changes ✨
- 4c18826: feat: Add OS information to Vuln Reports and add optional image info metrics (#1643) (@cnwaldron)
- f93a61d: feat: Add clusterCompliance_info metrics (#1333) (@geoffrey1330)
- 80dd3a8: feat: Flag for changing default cache-dir parameter (#1604) (@ahalay)
- e746309: feat: cache sbom by image ref (#1606) (@chen-keinan)
- b52065d: feat: expose trivy.skipFiles in helm values (#1622) (@andrew-gropyus)
🐛 Notable Fixes 🐛
- b8ae23a: fix: ensure trivy cm default (#1652) (@chen-keinan)
- 95aa101: fix: remove node selector (#1644) (@chen-keinan)
👮 Security updates👮
- 567bc7d: sec: bump node-collector v0.0.9 fix node-collector CVE-2023-39325 (#1637) (@chen-keinan)
📝 Documentation 📝
- 54e6c90: docs: fix chart version (#1634) (@AP-XD)
- 2df7401: docs: helm install (#1625) (@chen-keinan)
- 013b1d4: docs: modify README and docs landing page to reflect the same content (#1642) (@AnaisUrlichs)
🔧 Miscellaneous 🔧
- 295c9dd: chore: add condition for docs publish (#1654) (@chen-keinan)
- 957f05a: chore: bump chart testing (#1605) (@chen-keinan)
- 86aacdf: chore: bump go version (#1602) (@chen-keinan)
- 3902dc5: chore: bump trivy 0.47.0 (#1632) (@chen-keinan)
👷 Other work 👷
- 9dbe998: Added AWS_REGION env for ECR images in the ClientServer mode (#1613) (@trublast)
- 50a257b: Fix chart version (#1633) (@AP-XD)
- 95a7f1f: Handle trivy insecure database in ClientServer mode (#1623) (@miecio45)
- 8d2bc92: Update olm.md (#1640) (@titansmc)
- 38c2c5e: build(deps): bump aquaproj/aqua-installer from 2.1.2 to 2.1.3 (#1617) (@dependabot[bot])
- 93e3824: build(deps): bump aquaproj/aqua-installer from 2.1.3 to 2.2.0 (#1627) (@dependabot[bot])
- 089856b: build(deps): bump github.com/aquasecurity/trivy from 0.46.1 to 0.47.0 (#1615) (@dependabot[bot])
- b1f432a: build(deps): bump github.com/aws/aws-sdk-go from 1.46.6 to 1.47.9 (#1631) (@dependabot[bot])
- 01950f5: build(deps): bump github.com/aws/aws-sdk-go from 1.47.9 to 1.48.0 (#1647) (@dependabot[bot])
- a9573a6: build(deps): bump github.com/onsi/ginkgo/v2 from 2.13.0 to 2.13.1 (#1628) (@dependabot[bot])
- 9d61589: build(deps): bump github.com/onsi/gomega from 1.29.0 to 1.30.0 (#1629) (@dependabot[bot])
- e99ff79: build(deps): bump golang.org/x/net from 0.17.0 to 0.18.0 (#1630) (@dependabot[bot])
- f499e17: build(deps): bump golang.org/x/text from 0.13.0 to 0.14.0 (#1614) (@dependabot[bot])
- 8217e07: build(deps): bump helm/chart-testing-action from 2.6.0 to 2.6.1 (#1616) (@dependabot[bot])
- 8bf6ecc: build(deps): bump k8s.io/cli-runtime from 0.28.3 to 0.28.4 (#1651) (@dependabot[bot])
- 7afc6e2: build(deps): bump sigstore/cosign-installer from 3.1.2 to 3.2.0 (#1626) (@dependabot[bot])
- b33d2ce: make small changes to the docs introduction (#1641) (@AnaisUrlichs)
- 0893487: refactor: refactor scan-job command and args (#1638) (@chen-keinan)
- 293d94b: refactor: scan-job reports (#1639) (@chen-keinan)
Contributors
ahalay, titansmc, and 9 other contributors
Assets 20
v0.17.0-rc
Changelog
✨ Notable Changes ✨
- 4c18826: feat: Add OS information to Vuln Reports and add optional image info metrics (#1643) (@cnwaldron)
- f93a61d: feat: Add clusterCompliance_info metrics (#1333) (@geoffrey1330)
- 80dd3a8: feat: Flag for changing default cache-dir parameter (#1604) (@ahalay)
- e746309: feat: cache sbom by image ref (#1606) (@chen-keinan)
- b52065d: feat: expose trivy.skipFiles in helm values (#1622) (@andrew-gropyus)
🐛 Notable Fixes 🐛
- b8ae23a: fix: ensure trivy cm default (#1652) (@chen-keinan)
- 95aa101: fix: remove node selector (#1644) (@chen-keinan)
👮 Security updates👮
- 567bc7d: sec: bump node-collector v0.0.9 fix node-collector CVE-2023-39325 (#1637) (@chen-keinan)
📝 Documentation 📝
- 54e6c90: docs: fix chart version (#1634) (@AP-XD)
- 2df7401: docs: helm install (#1625) (@chen-keinan)
- 013b1d4: docs: modify README and docs landing page to reflect the same content (#1642) (@AnaisUrlichs)
🔧 Miscellaneous 🔧
- 295c9dd: chore: add condition for docs publish (#1654) (@chen-keinan)
- 957f05a: chore: bump chart testing (#1605) (@chen-keinan)
- 86aacdf: chore: bump go version (#1602) (@chen-keinan)
- 3902dc5: chore: bump trivy 0.47.0 (#1632) (@chen-keinan)
👷 Other work 👷
- 9dbe998: Added AWS_REGION env for ECR images in the ClientServer mode (#1613) (@trublast)
- 50a257b: Fix chart version (#1633) (@AP-XD)
- 95a7f1f: Handle trivy insecure database in ClientServer mode (#1623) (@miecio45)
- 8d2bc92: Update olm.md (#1640) (@titansmc)
- 38c2c5e: build(deps): bump aquaproj/aqua-installer from 2.1.2 to 2.1.3 (#1617) (@dependabot[bot])
- 93e3824: build(deps): bump aquaproj/aqua-installer from 2.1.3 to 2.2.0 (#1627) (@dependabot[bot])
- 089856b: build(deps): bump github.com/aquasecurity/trivy from 0.46.1 to 0.47.0 (#1615) (@dependabot[bot])
- b1f432a: build(deps): bump github.com/aws/aws-sdk-go from 1.46.6 to 1.47.9 (#1631) (@dependabot[bot])
- 01950f5: build(deps): bump github.com/aws/aws-sdk-go from 1.47.9 to 1.48.0 (#1647) (@dependabot[bot])
- a9573a6: build(deps): bump github.com/onsi/ginkgo/v2 from 2.13.0 to 2.13.1 (#1628) (@dependabot[bot])
- 9d61589: build(deps): bump github.com/onsi/gomega from 1.29.0 to 1.30.0 (#1629) (@dependabot[bot])
- e99ff79: build(deps): bump golang.org/x/net from 0.17.0 to 0.18.0 (#1630) (@dependabot[bot])
- f499e17: build(deps): bump golang.org/x/text from 0.13.0 to 0.14.0 (#1614) (@dependabot[bot])
- 8217e07: build(deps): bump helm/chart-testing-action from 2.6.0 to 2.6.1 (#1616) (@dependabot[bot])
- 8bf6ecc: build(deps): bump k8s.io/cli-runtime from 0.28.3 to 0.28.4 (#1651) (@dependabot[bot])
- 7afc6e2: build(deps): bump sigstore/cosign-installer from 3.1.2 to 3.2.0 (#1626) (@dependabot[bot])
- b33d2ce: make small changes to the docs introduction (#1641) (@AnaisUrlichs)
- 0893487: refactor: refactor scan-job command and args (#1638) (@chen-keinan)
- 293d94b: refactor: scan-job reports (#1639) (@chen-keinan)
Contributors
ahalay, titansmc, and 9 other contributors
Assets 20
v0.16.4
Changelog
🐛 Notable Fixes 🐛
- 11b01fd: fix(helm): add custom policies config (#1576) (@witalisoft)
- 477a753: fix: add trivy-timeout on scan fs mode (#1591) (@chen-keinan)
👮 Security updates👮
- 289c808: sec: security issue GHSA-m425-mq94-257g (#1597) (@chen-keinan)
🔧 Miscellaneous 🔧
- f9566cb: chore: release change log (#1582) (@chen-keinan)
👷 Other work 👷
- 1f70670: build(deps): bump github.com/onsi/gomega from 1.28.0 to 1.28.1 (#1588) (@dependabot[bot])
- 572c70c: build(deps): bump k8s.io/cli-runtime from 0.28.2 to 0.28.3 (#1589) (@dependabot[bot])
- 3343cac: build(deps): bump sigs.k8s.io/controller-runtime from 0.16.2 to 0.16.3 (#1587) (@dependabot[bot])
- ca3d4bc: change command value fs to filesystem in private-registries.md (#1583) (@Strigix)
- 71b68df: refactor: break plugin pod spec builder (#1594) (@chen-keinan)
- 425cc52: refactor: break plugin pod spec builder (#1595) (@chen-keinan)
Contributors
chen-keinan, witalisoft, and 2 other contributors
Assets 20
v0.16.3
Changelog
🐛 Notable Fixes 🐛
- 0cb38ec: fix: vuln-id metric broken (#1579) (@chen-keinan)
📝 Documentation 📝
- 7efb5fe: docs: update release process (#1572) (@chen-keinan)
🔧 Miscellaneous 🔧
- 808b3ed: chore: remove workflow cache (#1570) (@chen-keinan)
👷 Other work 👷
- d4139cf: build(deps): bump golang.org/x/net from 0.16.0 to 0.17.0 (#1567) (@dependabot[bot])
Contributors
chen-keinan and dependabot
Assets 20
v0.16.2
Changelog
- b6c6da5 Implement global values for image.registry (#1532)
- 9eac6dc build(deps): bump actions/setup-python from 4.7.0 to 4.7.1 (#1540)
- 7dbdbdf build(deps): bump github.com/aquasecurity/defsec from 0.92.0 to 0.93.0 (#1536)
- dca37c9 build(deps): bump github.com/aquasecurity/defsec from 0.93.0 to 0.93.1 (#1559)
- 7617869 build(deps): bump github.com/onsi/ginkgo/v2 from 2.12.1 to 2.13.0 (#1558)
- b67a49d build(deps): bump github.com/onsi/gomega from 1.27.10 to 1.28.0 (#1538)
- 137b5b6 build(deps): bump github.com/prometheus/client_golang (#1537)
- 019b367 build(deps): bump golang.org/x/net from 0.15.0 to 0.16.0 (#1557)
- 29a66f9 chore/title-checker-update (#1547)
- aa1ec41 chore: add automatic release (#1555)
- 6369680 chore: add automatic release-lint (#1556)
- a22b870 chore: add workflow deps (#1551)
- 65effc7 chore: add-title-checker (#1545)
- d3054fa chore: bump trivy 0.45.1 (#1535)
- 901b19e chore: helm docs verify (#1563)
- ae1c380 chore: label pr by prefix update (#1550)
- c5f7a5f chore: label pr by title (#1548)
- de8aef9 chore: merge labal tasks (#1554)
- 855fc44 chore: private-registries action (#1546)
- 4d2f220 chore: separate build workflow (#1566)
- abb0888 ci: pr title validate (#1568)
- 9e635c1 feat(manifests): add metrics component for static installation (#1553)
- c31448c feat: node-collector resources config (#1565)
- 781e5e4 feat: trivy image pull policy support (#1542)
- 3973a4d feature: make headless service configurable (#1562)
- 1f9ba50 fix(doc): update link to the configuration page in kubectl page (#1552)
- a015b3e fix: avoid keeping sbom historical reports (#1549)
- f7f36b7 fix: create every vulnerability metric occurrence (#1539)
- 9b059b1 fix: node collector priority class (#1544)
- b6ffd46 fix: trivy-server no-proxy setting (#1543)
v0.16.1
Changelog
- 4c17f19 Chore/fix magefile running test (#1492)
- 7e51e1f Fixed issues with json key in trivy operator (#1404)
- 0fc8320 build(deps): bump docker/login-action from 2.2.0 to 3.0.0 (#1523)
- 9051d8f build(deps): bump docker/setup-buildx-action from 2 to 3 (#1522)
- 9fe407b build(deps): bump docker/setup-qemu-action from 2 to 3 (#1520)
- a370cc5 build(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1 (#1484)
- be3a0ed build(deps): bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.12.1 (#1529)
- a104c60 build(deps): bump golang.org/x/net from 0.14.0 to 0.15.0 (#1491)
- 4a19ee6 build(deps): bump golang.org/x/text from 0.12.0 to 0.13.0 (#1483)
- f60993c build(deps): bump goreleaser/goreleaser-action from 4 to 5 (#1521)
- 547d4ce build(deps): bump k8s.io/apimachinery from 0.28.1 to 0.28.2 (#1511)
- b55b392 build(deps): bump k8s.io/cli-runtime from 0.28.1 to 0.28.2 (#1512)
- 9ea923c build(deps): bump peter-evans/repository-dispatch from 1 to 2 (#1506)
- fd84765 build(deps): bump sigs.k8s.io/controller-runtime from 0.16.1 to 0.16.2 (#1507)
- c456031 build(deps): bump sigstore/cosign-installer from 3.1.1 to 3.1.2 (#1480)
- dd840d9 chore: action latest tag (#1489)
- 82345e5 chore: action latest tag (#1490)
- 146e696 chore: alpine vulnerabilities (#1500)
- 81d1c12 chore: bump chore/checkout-action v4 (#1495)
- 50e84a6 chore: bump controller-runtime-0.16.1 (#1505)
- 9a0112f chore: bump node collector 0.8.0 (#1502)
- 8573575 chore: bump trivy-0.45.0 (#1494)
- 4ebc3ae chore: clean cache (#1498)
- 2246081 chore: clean cache tools (#1496)
- 655ede7 chore: clean cache tools-revert (#1497)
- 9354a82 chore: clean release cache (#1499)
- 6b9a3b6 chore: magefile cleanup (#1493)
- 4a65d7c chore: remove cache release (#1526)
- 47a03a9 chore: remove cache release (#1530)
- 4f3a75a chore: split helm chart template files (#1515)
- d2f3538 feat: use TRIVY_SKIP_DB_UPDATE env variable (#1474)
- 8eaef68 fix: disable compressed logs break trivy command (#1516)
v0.16.0
Changelog
- 902c14d adding mage support (#1420)
- c94a8f2 chore: action latest tag (#1487)
- debb8e1 chore: mage namespaces support (#1478)
- cebf7f8 chore: trigger chart publish (#1477)
- a74dfdc Minor syntax fix to the custom values.yaml details in the helm docs (#1458)
- 77b44fe Skip java db update flag (#1444)
- ff61128 Typo Update index.md (#1442)
- d204543 Update helm.md (#1390)
- d8809d1 ability to opt-out persistent volume claim for trivy-server (#1457)
- 9140bcf adding information on cis benchmarks and config audit scans based on Slack question (#1445)
- aef6dcd build(deps): bump github.com/CycloneDX/cyclonedx-go (#1464)
- 37d454e build(deps): bump github.com/google/go-containerregistry (#1424)
- 10ecda6 build(deps): bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0 (#1465)
- c1f6305 build(deps): bump go.uber.org/automaxprocs from 1.5.2 to 1.5.3 (#1411)
- a655c07 build(deps): bump golang.org/x/net from 0.12.0 to 0.14.0 (#1422)
- 3d8c89d build(deps): bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 (#1447)
- 9b6bd4f build(deps): bump k8s.io/api from 0.28.0 to 0.28.1 (#1461)
- e26b36a build(deps): bump k8s.io/apiextensions-apiserver from 0.27.3 to 0.27.4 (#1410)
- cafec10 build(deps): bump k8s.io/cli-runtime from 0.27.3 to 0.27.4 (#1412)
- 5265fa3 build(deps): bump k8s.io/cli-runtime from 0.28.0 to 0.28.1 (#1462)
- 478ec85 build(deps): bump sigs.k8s.io/controller-runtime from 0.15.0 to 0.15.1 (#1436)
- 1a204ba chore: add chart appVersion validation action (#1468)
- 1fbb0e7 chore: bump k8s components 0.28.0 (#1451)
- 4bc323c chore: bump trivy 0.43.1 (#1406)
- 6b23ef9 chore: bump trivy 0.43.1 lib (#1407)
- d92e690 chore: bump trivy 0.44.1 (#1453)
- a45e359 chore: declare missing properties in values.yaml (#1427)
- 49ecc26 chore: refactor workflow naming (#1470)
- 40977b1 chore: reformat chart templates (#1439)
- 0adc1f8 chore: reformat missed chart templates (#1459)
- 4862faf feat: Add optional annotations & endpointAdditionalProperties to ServiceMonitor in helm chart (#1452)
- acdcbb2 feat: Automatically build helm chart on PR merge (#1460)
- 9320ddf feat: add CVE published and updated date (#1433)
- 1ed616d feat: allow changing the default revisionHistoryLimit (#1415)
- d2825cd feat: exclude init containers (#1438)
- 35213ef feat: make trivy-server replicas configurable (#1473)
- f612674 feat: skip db update for clientserver mode (#1440)
- 953dbd7 feat: use serverServiceName as container name (#1472)
- ace1bd5 fix(chart): only create servicemonitor if API supports it (#1403)
- 2d3ad4d fix: add image digest to report (#1446)
- c944cbf fix: add insecure flag for scanning container (#1419)
- 60fbfa2 fix: configure controller cache sync timeout (#1395)
- ee4fcf5 fix: report ttl respect scanner flags (#1432)
- 7fe8c39 preserve unknown fields in vulnerabilityreport (#1455)
v0.16.0-rc
Changelog
- a74dfdc Minor syntax fix to the custom values.yaml details in the helm docs (#1458)
- 77b44fe Skip java db update flag (#1444)
- ff61128 Typo Update index.md (#1442)
- d204543 Update helm.md (#1390)
- d8809d1 ability to opt-out persistent volume claim for trivy-server (#1457)
- 9140bcf adding information on cis benchmarks and config audit scans based on Slack question (#1445)
- aef6dcd build(deps): bump github.com/CycloneDX/cyclonedx-go (#1464)
- 37d454e build(deps): bump github.com/google/go-containerregistry (#1424)
- 10ecda6 build(deps): bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0 (#1465)
- c1f6305 build(deps): bump go.uber.org/automaxprocs from 1.5.2 to 1.5.3 (#1411)
- a655c07 build(deps): bump golang.org/x/net from 0.12.0 to 0.14.0 (#1422)
- 3d8c89d build(deps): bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 (#1447)
- 9b6bd4f build(deps): bump k8s.io/api from 0.28.0 to 0.28.1 (#1461)
- e26b36a build(deps): bump k8s.io/apiextensions-apiserver from 0.27.3 to 0.27.4 (#1410)
- cafec10 build(deps): bump k8s.io/cli-runtime from 0.27.3 to 0.27.4 (#1412)
- 5265fa3 build(deps): bump k8s.io/cli-runtime from 0.28.0 to 0.28.1 (#1462)
- 478ec85 build(deps): bump sigs.k8s.io/controller-runtime from 0.15.0 to 0.15.1 (#1436)
- 1a204ba chore: add chart appVersion validation action (#1468)
- 1fbb0e7 chore: bump k8s components 0.28.0 (#1451)
- 4bc323c chore: bump trivy 0.43.1 (#1406)
- 6b23ef9 chore: bump trivy 0.43.1 lib (#1407)
- d92e690 chore: bump trivy 0.44.1 (#1453)
- a45e359 chore: declare missing properties in values.yaml (#1427)
- 49ecc26 chore: refactor workflow naming (#1470)
- 40977b1 chore: reformat chart templates (#1439)
- 0adc1f8 chore: reformat missed chart templates (#1459)
- 4862faf feat: Add optional annotations & endpointAdditionalProperties to ServiceMonitor in helm chart (#1452)
- acdcbb2 feat: Automatically build helm chart on PR merge (#1460)
- 9320ddf feat: add CVE published and updated date (#1433)
- 1ed616d feat: allow changing the default revisionHistoryLimit (#1415)
- d2825cd feat: exclude init containers (#1438)
- 35213ef feat: make trivy-server replicas configurable (#1473)
- f612674 feat: skip db update for clientserver mode (#1440)
- 953dbd7 feat: use serverServiceName as container name (#1472)
- ace1bd5 fix(chart): only create servicemonitor if API supports it (#1403)
- 2d3ad4d fix: add image digest to report (#1446)
- c944cbf fix: add insecure flag for scanning container (#1419)
- 60fbfa2 fix: configure controller cache sync timeout (#1395)
- ee4fcf5 fix: report ttl respect scanner flags (#1432)
- 7fe8c39 preserve unknown fields in vulnerabilityreport (#1455)