Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

🌱 Update Builder Image group #1473

Merged
merged 1 commit into from
Oct 15, 2024
Merged

Conversation

syself-bot[bot]
Copy link
Contributor

@syself-bot syself-bot bot commented Sep 1, 2024

This PR contains the following updates:

Package Type Update Change
docker.io/aquasec/trivy (source) stage minor 0.54.1 -> 0.56.2
docker.io/library/alpine stage patch 3.20.2 -> 3.20.3
docker.io/library/golang final digest 825f815 -> 3bc1984
golangci/golangci-lint minor v1.59.1 -> v1.61.0

Release Notes

aquasecurity/trivy (docker.io/aquasec/trivy)

v0.56.2

Compare Source

Changelog

  • f2252c8 release: v0.56.2 [release/v0.56] (#​7694)
  • f6700ec fix(redhat): include arch in PURL qualifiers [backport: release/v0.56] (#​7702)
  • 25d2540 fix(sbom): add options for DBs in private registries [backport: release/v0.56] (#​7691)

v0.56.1

Compare Source

Changelog

v0.56.0

Compare Source

Features
Bug Fixes
Performance Improvements
Reverts
  • java: stop supporting of test scope for pom.xml files (#​7488) (b0222fe)

v0.55.2

Compare Source

Changelog

  • 928c7c0 release: v0.55.2 [release/v0.55] (#​7523)
  • 14a058f fix(java): use dependencyManagement from root/child pom's for dependencies from parents [backport: release/v0.55] (#​7521)
  • 990bc4e chore(deps): bump alpine from 3.20.0 to 3.20.3 [backport: release/v0.55] (#​7516)

v0.55.1

Compare Source

⚡Release highlights and summary⚡

👉https://github.com/aquasecurity/trivy/discussions/7494

Changelog

https://github.com/aquasecurity/trivy/blob/release/v0.55/CHANGELOG.md#0551-2024-09-12

v0.55.0

Compare Source

⚠ BREAKING CHANGES
  • cli: delete deprecated SBOM flags (#​7266)
Features
Bug Fixes
Performance Improvements
golangci/golangci-lint (golangci/golangci-lint)

v1.61.0

Compare Source

  1. Enhancements
    • Add junit-xml-extended format
    • Exclude Swagger Codegen files by default
  2. Updated linters
    • dupword: from 0.0.14 to 0.1.1
    • fatcontext: from 0.4.0 to 0.5.2
    • gci: from 0.13.4 to 0.13.5 (new option no-lex-order)
    • go-ruleguard: from 0.4.2 to 0fe6f58 (fix panic with custom linters)
    • godot: from 1.4.16 to 1.4.17
    • gomodguard: from 1.3.3 to 1.3.5
    • gosec: disable temporarily G407
    • gosec: from ab3f6c1 to 2.21.2 (partially fix G115)
    • intrange: from 0.1.2 to 0.2.0
    • nolintlint: remove the empty line in the directive replacement
  3. Misc.
    • Improve runtime version parsing
  4. Documentation
    • Add additional info about typecheck

v1.60.3

Compare Source

  1. Updated linters
  2. Misc.
    • Check that the Go version use to build is greater or equals to the Go version of the project

v1.60.2

Compare Source

  1. Updated linters
  • gofmt: update to HEAD (go1.22)
  • gofumpt: from 0.6.0 to 0.7.0
  • gosec: fix G602 analyzer
  • gosec: from 5f0084e to 81cda2f (adds G115, G405, G406, G506, G507)
  • staticcheck: from 0.5.0 to 0.5.1
  • staticcheck: propagate Go version
  • wrapcheck: from 2.8.3 to 2.9.0
  • ⚠️ exportloopref: deprecation

v1.60.1

Compare Source

  1. Updated linters
    • errorlint: from 1.5.2 to 1.6.0
    • exhaustruct: from 3.2.0 to 3.3.0 (recognize custom error values in return)
    • fatcontext: from 0.2.2 to 0.4.0 (fix false positives for context stored in structs)
    • gocognit: from 1.1.2 to 1.1.3
    • gomodguard: from 1.3.2 to 1.3.3
    • govet (printf): report non-constant format, no args
    • lll: advertise max line length instead of just reporting failure
    • revive: from 1.3.7 to 1.3.9 (new rule: comments-density)
    • sloglint: from 0.7.1 to 0.7.2
    • spancheck: from 0.6.1 to 0.6.2
    • staticcheck: from 0.4.7 to 0.5.0
    • tenv: from 1.7.1 to 1.10.0 (remove reports on fuzzing)
    • testifylint: from 1.3.1 to 1.4.3 (new options: formatter, suite-broken-parallel, suite-subtest-run)
    • tparallel: from 0.3.1 to 0.3.2
    • usestdlibvars: from 1.26.0 to 1.27.0 (fix false-positive with number used inside a mathematical operations)
    • wsl: from 4.2.1 to 4.4.1
    • ⚠️ unused: remove exported-is-used option
  2. Fixes
    • SARIF: sanitize level property
    • ⚠️ typecheck issues should never be ignored
  3. Documentation
    • Add link on linter without configuration
    • Remove 'trusted by' page
    • wsl update documentation of the configuration
  4. misc.
    • 🎉 go1.23 support

v1.60.0

Compare Source

Cancelled due to a CI problem.


Configuration

📅 Schedule: Branch creation - "on the first day of the month" in timezone Europe/Berlin, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch from 66fffe8 to f8f446d Compare September 4, 2024 11:02
@syself-bot syself-bot bot changed the title 🌱 Update Builder Image 🌱 Update Builder Image group Sep 4, 2024
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch 3 times, most recently from b313dc9 to ff7ffb0 Compare September 7, 2024 11:02
@syself-bot syself-bot bot added the type/patch label Sep 7, 2024
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch 3 times, most recently from 3af0154 to c70f56e Compare September 17, 2024 11:03
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch 2 times, most recently from 3bbba0c to 71350a6 Compare October 4, 2024 11:03
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch from 71350a6 to fddaa2a Compare October 10, 2024 11:03
| datasource  | package                  | from    | to      |
| ----------- | ------------------------ | ------- | ------- |
| docker      | docker.io/aquasec/trivy  | 0.54.1  | 0.56.2  |
| docker      | docker.io/library/alpine | 3.20.2  | 3.20.3  |
| github-tags | golangci/golangci-lint   | v1.59.1 | v1.61.0 |
@syself-bot syself-bot bot force-pushed the renovate/caph-builder-image branch from fddaa2a to dd71e84 Compare October 15, 2024 09:17
@batistein batistein merged commit d2a52e6 into main Oct 15, 2024
5 of 7 checks passed
@batistein batistein deleted the renovate/caph-builder-image branch October 15, 2024 09:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant