chore(deps): bump the common group across 1 directory with 7 updates #7305

dependabot · 2024-08-05T14:46:13Z

Bumps the common group with 7 updates in the / directory:

Package	From	To
github.com/aws/aws-sdk-go-v2/service/ec2	`1.172.0`	`1.173.0`
github.com/aws/aws-sdk-go-v2/service/ecr	`1.30.3`	`1.31.0`
github.com/aws/aws-sdk-go-v2/service/s3	`1.58.2`	`1.58.3`
github.com/hashicorp/hc-install	`0.7.0`	`0.8.0`
github.com/open-policy-agent/opa	`0.66.0`	`0.67.0`
golang.org/x/mod	`0.19.0`	`0.20.0`
golang.org/x/sync	`0.7.0`	`0.8.0`

Updates github.com/aws/aws-sdk-go-v2/service/ec2 from 1.172.0 to 1.173.0

Commits

0e6ec96 Release 2024-07-25
f58e059 Regenerated Clients
b915aea Update API model
bd92e5e remove integration test broken by cloudsearch service (#2725)
205973f Release 2024-07-24
26375ca Regenerated Clients
07c560f Update endpoints model
97a1692 Update API model
17cc515 provide a region hint of "us-west-2" in GetBucketRegion example (#2716)
See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ecr from 1.30.3 to 1.31.0

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/service/ecr's changelog.

Release (2023-03-21)

General Highlights

Dependency Update: Updated to the latest SDK module versions

Module Highlights

github.com/aws/aws-sdk-go-v2/service/chimesdkmessaging: v1.13.0

Feature: Amazon Chime SDK messaging customers can now manage streaming configuration for messaging data for archival and analysis.

github.com/aws/aws-sdk-go-v2/service/cleanrooms: v1.1.0

Feature: GA Release of AWS Clean Rooms, Added Tagging Functionality

github.com/aws/aws-sdk-go-v2/service/ec2: v1.91.0

Feature: This release adds support for AWS Network Firewall, AWS PrivateLink, and Gateway Load Balancers to Amazon VPC Reachability Analyzer, and it makes the path destination optional as long as a destination address in the filter at source is provided.

github.com/aws/aws-sdk-go-v2/service/internal/s3shared: v1.14.0

Feature: port v1 sdk 100-continue http header customization for s3 PutObject/UploadPart request and enable user config

github.com/aws/aws-sdk-go-v2/service/iotsitewise: v1.28.0

Feature: Provide support for tagging of data streams and enabling tag based authorization for property alias

github.com/aws/aws-sdk-go-v2/service/mgn: v1.18.0

Feature: This release introduces the Import and export feature and expansion of the post-launch actions

github.com/aws/aws-sdk-go-v2/service/s3: v1.31.0

Feature: port v1 sdk 100-continue http header customization for s3 PutObject/UploadPart request and enable user config

Release (2023-03-20)

Module Highlights

github.com/aws/aws-sdk-go-v2/service/applicationautoscaling: v1.19.0

Feature: With this release customers can now tag their Application Auto Scaling registered targets with key-value pairs and manage IAM permissions for all the tagged resources centrally.

github.com/aws/aws-sdk-go-v2/service/neptune: v1.20.0

Feature: This release makes following few changes. db-cluster-identifier is now a required parameter of create-db-instance. describe-db-cluster will now return PendingModifiedValues and GlobalClusterIdentifier fields in the response.

github.com/aws/aws-sdk-go-v2/service/s3outposts: v1.16.0

Feature: S3 On Outposts added support for endpoint status, and a failed endpoint reason, if any

github.com/aws/aws-sdk-go-v2/service/workdocs: v1.14.0

Feature: This release adds a new API, SearchResources, which enable users to search through metadata and content of folders, documents, document versions and comments in a WorkDocs site.

Release (2023-03-17)

Module Highlights

github.com/aws/aws-sdk-go-v2/service/billingconductor: v1.6.0

Feature: This release adds a new filter to ListAccountAssociations API and a new filter to ListBillingGroups API.

github.com/aws/aws-sdk-go-v2/service/configservice: v1.30.0

Feature: This release adds resourceType enums for types released from October 2022 through February 2023.

github.com/aws/aws-sdk-go-v2/service/databasemigrationservice: v1.25.0

Feature: S3 setting to create AWS Glue Data Catalog. Oracle setting to control conversion of timestamp column. Support for Kafka SASL Plain authentication. Setting to map boolean from PostgreSQL to Redshift. SQL Server settings to force lob lookup on inline LOBs and to control access of database logs.

Release (2023-03-16)

General Highlights

Dependency Update: Updated to the latest SDK module versions

Module Highlights

github.com/aws/aws-sdk-go-v2/config: v1.18.18

... (truncated)

Commits

390cf19 Release 2023-03-21
c37c72a Regenerated Clients
d1e5193 Update endpoints model
2506101 Update API model
c93b5cc Merge pull request #2051 from aws/add100ContinueCustomization
c01aac6 Keep one changelog for PR
3780faa Keep one changelog for PR
b94b5b7 Merge remote-tracking branch 'origin/add100ContinueCustomization' into add100...
6174ff2 Change some variable name and use operation shape id to represent operation s...
83491fc add changelog to last commit
Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.58.2 to 1.58.3

Commits

5102c2e Release 2024-08-02
001b1fd Regenerated Clients
0897137 Update API model
a274795 add assurance tests for auth scheme select (#2730)
2d43bf8 Release 2024-08-01
5bd193d Regenerated Clients
5954703 Update API model
0c73d2b Release 2024-07-30
3102b1f Regenerated Clients
348b939 Update endpoints model
Additional commits viewable in compare view

Updates github.com/hashicorp/hc-install from 0.7.0 to 0.8.0

Release notes

Sourced from github.com/hashicorp/hc-install's releases.

v0.8.0

ENHANCEMENTS:

Add retries for HTTP operations by @james0209 in hashicorp/hc-install#218

Allow LicenseDir field for non-enterprise usage by @james0209 in hashicorp/hc-install#214

BUG FIXES:

[fix] include custom url's "path" when creating Archive URL by @james0209 in hashicorp/hc-install#234

INTERNAL:

[chore] Remove unused variable by @james0209 in hashicorp/hc-install#215

build(deps): bump github.com/hashicorp/go-retryablehttp from 0.7.6 to 0.7.7 by @dependabot in hashicorp/hc-install#221

build(deps): bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 by @dependabot in hashicorp/hc-install#216

build(deps): bump golang.org/x/mod from 0.17.0 to 0.18.0 by @dependabot in hashicorp/hc-install#223

build(deps): bump golang.org/x/mod from 0.18.0 to 0.19.0 by @dependabot in hashicorp/hc-install#229

build(deps): bump hashicorp/action-setup-bob from 2.0.0 to 2.0.3 in the github-actions-backward-compatible group by @dependabot in hashicorp/hc-install#220

build(deps): bump hashicorp/action-setup-bob from 2.0.3 to 2.1.0 in the github-actions-backward-compatible group by @dependabot in hashicorp/hc-install#222

build(deps): bump hashicorp/actions-packaging-linux from 1.7 to 1.8 in the github-actions-backward-compatible group by @dependabot in hashicorp/hc-install#224

build(deps): Bump workflows to latest trusted versions by @hashicorp-tsccr in hashicorp/hc-install#219

build(deps): Bump workflows to latest trusted versions by @hashicorp-tsccr in hashicorp/hc-install#226

build(deps): Bump workflows to latest trusted versions by @hashicorp-tsccr in hashicorp/hc-install#231

build(deps): Bump workflows to latest trusted versions by @hashicorp-tsccr in hashicorp/hc-install#233

go: bump version to 1.22.4 by @radeksimko in hashicorp/hc-install#227

Commits

6a754fc Update VERSION
b216d7f [fix] include custom url's "path" when creating Archive URL (#234)
5efb089 build(deps): Bump workflows to latest trusted versions (#233)
0c03a35 build(deps): Bump workflows to latest trusted versions (#231)
321faf4 build(deps): bump golang.org/x/mod from 0.18.0 to 0.19.0 (#229)
3f6f9f2 go: bump version to 1.22.4 (#227)
2597d9e build(deps): Bump workflows to latest trusted versions (#226)
c4aaa60 build(deps): bump hashicorp/actions-packaging-linux from 1.7 to 1.8 in the gi...
03e0bd6 build(deps): bump hashicorp/action-setup-bob from 2.0.3 to 2.1.0 in the githu...
f847221 Merge pull request #223 from hashicorp/dependabot/go_modules/golang.org/x/mod...
Additional commits viewable in compare view

Updates github.com/open-policy-agent/opa from 0.66.0 to 0.67.0

Release notes

Sourced from github.com/open-policy-agent/opa's releases.

v0.67.0

This release contains a mix of features, a new builtin function (strings.count), performance improvements, and bugfixes.

Breaking Change

Request Body Size Limits

OPA now automatically rejects very large requests (#6868) authored by @philipaconrad. Requests with a Content-Length larger than 128 MB uncompressed, and gzipped requests with payloads that decompress to larger than 256 MB will be rejected, as part of hardening OPA against denial-of-service attacks. Previously, a large enough request could cause an OPA instance to run out of memory in low-memory sidecar deployment scenarios, just from attempting to read the request body into memory.

These changes allow improvements in memory usage for the OPA HTTP server, and help OPA deployments avoid some accidental out-of-memory situations.

For most users, no changes will be needed to continue using OPA. However, to control this behavior, two new configuration keys are available: server.decoding.max_length and server.decoding.gzip.max_length. These control the max size in bytes to allow for an incoming request payload, and the maximum size in bytes to allow for a decompressed gzip request payload, respectively.

Here's an example OPA configuration using the new keys:
# Set max request size to 64 MB and max gzip size (decompressed) to be 128 MB.
server:
  decoding:
    max_length: 67108864
    gzip:
      max_length: 134217728
Topdown and Rego

topdown: New strings.count builtin which returns the number of non-overlapping instances of a substring in a string (#6827) authored by @Manish-Giri

format: Produce error when --rego-v1 formatted module has rule name conflicting with keyword (#6833) authored by @johanfylling

topdown: Add cap to caches for regex and glob built-in functions (#6828) authored by @johanfylling. This fixes possible memory leaks where caches grow uncontrollably when large amounts of regexes or globs are generated or originate from the input document.

Runtime, Tooling, SDK

repl: Add support for correctly loading bundle modules (#6872) authored by @ashutosh-narkar

plugins/discovery: Allow un-registration of discovery listener (#6851) authored by @mjungsbluth. The discovery plugin allows OPA to register a bundle download status listener but previously did not offer a method to unregister that listener

plugins/logs: Reduce amount of work performed inside global lock in decision log plugin (#6859) authored by @johanfylling

plugins/rest: Add a new client credential attribute to support Azure Workload Identity. This would allow workloads deployed on an Azure Kubernetes Services (AKS) cluster to authenticate and access Azure cloud resources (#6802) authored by @ledbutter

cmd/inspect: Add ability for opa inspect to inspect a single file outside of any bundle (#6873) authored by @tjons

cmd+bundle: Add --follow-symlinks flag to the opa build command to allow users to build directories with symlinked files, and have the contents of those symlinked files included in the built bundle (#6800) authored by @tjons

server: Add missing handling in the server for the explain=fails query value (#6886) authored by @acamatcisco

Docs, Website, Ecosystem

docs: Update bundle section with an example of a manifest with rego_version and file_rego_versions attributes (#6885) authored by @ashutosh-narkar

docs: Better link language SDKs to make them more discoverable (#6866) authored by @charlieegan3

Miscellaneous

... (truncated)

Changelog

Sourced from github.com/open-policy-agent/opa's changelog.

0.67.0

This release contains a mix of features, a new builtin function (strings.count), performance improvements, and bugfixes.

Breaking Change

Request Body Size Limits

OPA now automatically rejects very large requests (#6868) authored by @philipaconrad. Requests with a Content-Length larger than 128 MB uncompressed, and gzipped requests with payloads that decompress to larger than 256 MB will be rejected, as part of hardening OPA against denial-of-service attacks. Previously, a large enough request could cause an OPA instance to run out of memory in low-memory sidecar deployment scenarios, just from attempting to read the request body into memory.

These changes allow improvements in memory usage for the OPA HTTP server, and help OPA deployments avoid some accidental out-of-memory situations.

For most users, no changes will be needed to continue using OPA. However, to control this behavior, two new configuration keys are available: server.decoding.max_length and server.decoding.gzip.max_length. These control the max size in bytes to allow for an incoming request payload, and the maximum size in bytes to allow for a decompressed gzip request payload, respectively.

Here's an example OPA configuration using the new keys:
# Set max request size to 64 MB and max gzip size (decompressed) to be 128 MB.
server:
  decoding:
    max_length: 67108864
    gzip:
      max_length: 134217728
Topdown and Rego

topdown: New strings.count builtin which returns the number of non-overlapping instances of a substring in a string (#6827) authored by @Manish-Giri

format: Produce error when --rego-v1 formatted module has rule name conflicting with keyword (#6833) authored by @johanfylling

topdown: Add cap to caches for regex and glob built-in functions (#6828) authored by @johanfylling. This fixes possible memory leaks where caches grow uncontrollably when large amounts of regexes or globs are generated or originate from the input document.

Runtime, Tooling, SDK

repl: Add support for correctly loading bundle modules (#6872) authored by @ashutosh-narkar

plugins/discovery: Allow un-registration of discovery listener (#6851) authored by @mjungsbluth. The discovery plugin allows OPA to register a bundle download status listener but previously did not offer a method to unregister that listener

plugins/logs: Reduce amount of work performed inside global lock in decision log plugin (#6859) authored by @johanfylling

plugins/rest: Add a new client credential attribute to support Azure Workload Identity. This would allow workloads deployed on an Azure Kubernetes Services (AKS) cluster to authenticate and access Azure cloud resources (#6802) authored by @ledbutter

cmd/inspect: Add ability for opa inspect to inspect a single file outside of any bundle (#6873) authored by @tjons

cmd+bundle: Add --follow-symlinks flag to the opa build command to allow users to build directories with symlinked files, and have the contents of those symlinked files included in the built bundle (#6800) authored by @tjons

server: Add missing handling in the server for the explain=fails query value (#6886) authored by @acamatcisco

Docs, Website, Ecosystem

docs: Update bundle section with an example of a manifest with rego_version and file_rego_versions attributes (#6885) authored by @ashutosh-narkar

docs: Better link language SDKs to make them more discoverable (#6866) authored by @charlieegan3

... (truncated)

Commits

b62ae6b Prepare v0.67.0 release
bec8e1a build(deps): bump github/codeql-action from 3.25.13 to 3.25.14 (#6888)
d48fdd9 server: Add missing handling for explain=fails to the REST API.
959f9e5 docs: Add an example of a manifest with attribute
a793f27 repl: Add support for correctly loading bundle modules
c5706ee server+util: Limit max request sizes, prealloc request buffers (#6868)
0ca35e2 build(deps): bump docker/setup-buildx-action from 3.4.0 to 3.5.0 (#6880)
f9ccb66 build(deps): bump github/codeql-action from 3.25.12 to 3.25.13 (#6881)
0db1f8f build(deps): bump docker/setup-qemu-action from 3.1.0 to 3.2.0 (#6882)
ac3ddf9 docs: Update generated CLI docs
Additional commits viewable in compare view

Updates golang.org/x/mod from 0.19.0 to 0.20.0

Commits

bc151c4 README: fix link to x/tools
d1f873e modfile: fix Cleanup clobbering Line reference
b56a28f modfile: Add support for tool lines
79169e9 LICENSE: update per Google Legal
See full diff in compare view

Updates golang.org/x/sync from 0.7.0 to 0.8.0

Commits

411f99e LICENSE: update per Google Legal
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the common group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/aws/aws-sdk-go-v2/service/ec2](https://github.com/aws/aws-sdk-go-v2) | `1.172.0` | `1.173.0` | | [github.com/aws/aws-sdk-go-v2/service/ecr](https://github.com/aws/aws-sdk-go-v2) | `1.30.3` | `1.31.0` | | [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.58.2` | `1.58.3` | | [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.7.0` | `0.8.0` | | [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `0.66.0` | `0.67.0` | | [golang.org/x/mod](https://github.com/golang/mod) | `0.19.0` | `0.20.0` | | [golang.org/x/sync](https://github.com/golang/sync) | `0.7.0` | `0.8.0` | Updates `github.com/aws/aws-sdk-go-v2/service/ec2` from 1.172.0 to 1.173.0 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@service/ec2/v1.172.0...service/ec2/v1.173.0) Updates `github.com/aws/aws-sdk-go-v2/service/ecr` from 1.30.3 to 1.31.0 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/service/s3/v1.31.0/CHANGELOG.md) - [Commits](aws/aws-sdk-go-v2@v1.30.3...service/s3/v1.31.0) Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.58.2 to 1.58.3 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.58.2...service/s3/v1.58.3) Updates `github.com/hashicorp/hc-install` from 0.7.0 to 0.8.0 - [Release notes](https://github.com/hashicorp/hc-install/releases) - [Commits](hashicorp/hc-install@v0.7.0...v0.8.0) Updates `github.com/open-policy-agent/opa` from 0.66.0 to 0.67.0 - [Release notes](https://github.com/open-policy-agent/opa/releases) - [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md) - [Commits](open-policy-agent/opa@v0.66.0...v0.67.0) Updates `golang.org/x/mod` from 0.19.0 to 0.20.0 - [Commits](golang/mod@v0.19.0...v0.20.0) Updates `golang.org/x/sync` from 0.7.0 to 0.8.0 - [Commits](golang/sync@v0.7.0...v0.8.0) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/service/ec2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: github.com/aws/aws-sdk-go-v2/service/ecr dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: github.com/aws/aws-sdk-go-v2/service/s3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: common - dependency-name: github.com/hashicorp/hc-install dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: github.com/open-policy-agent/opa dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: golang.org/x/mod dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: golang.org/x/sync dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common ... Signed-off-by: dependabot[bot] <[email protected]>

* feat(vm): Support direct filesystem (aquasecurity#7058) Signed-off-by: yusuke.koyoshi <[email protected]> * feat(cli)!: delete deprecated SBOM flags (aquasecurity#7266) Signed-off-by: knqyf263 <[email protected]> * feat(vm): support the Ext2/Ext3 filesystems (aquasecurity#6983) * fix(plugin): do not call GitHub content API for releases and tags (aquasecurity#7274) Signed-off-by: knqyf263 <[email protected]> * fix(java): Return error when trying to find a remote pom to avoid segfault (aquasecurity#7275) Co-authored-by: DmitriyLewen <[email protected]> * fix(flag): incorrect behavior for deprected flag `--clear-cache` (aquasecurity#7281) * refactor(misconf): remove file filtering from parsers (aquasecurity#7289) Signed-off-by: nikpivkin <[email protected]> * feat(vuln): Add `--detection-priority` flag for accuracy tuning (aquasecurity#7288) Signed-off-by: knqyf263 <[email protected]> * docs: add auto-generated config (aquasecurity#7261) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * fix(terraform): add aws_region name to presets (aquasecurity#7184) * perf(misconf): do not convert contents of a YAML file to string (aquasecurity#7292) Signed-off-by: nikpivkin <[email protected]> * refactor(misconf): remove unused universal scanner (aquasecurity#7293) Signed-off-by: nikpivkin <[email protected]> * perf(misconf): use json.Valid to check validity of JSON (aquasecurity#7308) Signed-off-by: nikpivkin <[email protected]> * fix(misconf): load only submodule if it is specified in source (aquasecurity#7112) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): support for policy and bucket grants (aquasecurity#7284) Signed-off-by: nikpivkin <[email protected]> * fix(misconf): do not set default value for default_cache_behavior (aquasecurity#7234) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): iterator argument support for dynamic blocks (aquasecurity#7236) Signed-off-by: nikpivkin <[email protected]> Co-authored-by: simar7 <[email protected]> * chore(deps): bump the common group across 1 directory with 7 updates (aquasecurity#7305) Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * docs: update client/server docs for misconf and license scanning (aquasecurity#7277) Signed-off-by: nikpivkin <[email protected]> Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * docs: update links to packaging.python.org (aquasecurity#7318) Signed-off-by: nikpivkin <[email protected]> * perf(misconf): optimize work with context (aquasecurity#6968) Signed-off-by: nikpivkin <[email protected]> * refactor: replace ftypes.Gradle with packageurl.TypeGradle (aquasecurity#7323) Signed-off-by: nikpivkin <[email protected]> * docs: update air-gapped docs (aquasecurity#7160) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * docs(misconf): Update callsites to use correct naming (aquasecurity#7335) * chore(deps): bump the common group with 9 updates (aquasecurity#7333) Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix(misconf): change default TLS values for the Azure storage account (aquasecurity#7345) Signed-off-by: nikpivkin <[email protected]> * refactor(misconf): highlight only affected rows (aquasecurity#7310) Signed-off-by: nikpivkin <[email protected]> * fix(misconf): wrap Azure PortRange in iac types (aquasecurity#7357) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): scanning support for YAML and JSON (aquasecurity#7311) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): variable support for Terraform Plan (aquasecurity#7228) Signed-off-by: nikpivkin <[email protected]> * fix: safely check if the directory exists (aquasecurity#7353) Signed-off-by: nikpivkin <[email protected]> * chore(deps): bump the aws group across 1 directory with 7 updates (aquasecurity#7358) Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat(server): add internal `--path-prefix` flag for client/server mode (aquasecurity#7321) Signed-off-by: knqyf263 <[email protected]> * chore(deps): bump trivy-checks (aquasecurity#7350) Signed-off-by: nikpivkin <[email protected]> * refactor(misconf): use slog (aquasecurity#7295) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): ignore duplicate checks (aquasecurity#7317) Signed-off-by: nikpivkin <[email protected]> * fix(misconf): init frameworks before updating them (aquasecurity#7376) Signed-off-by: nikpivkin <[email protected]> * fix(misconf): support deprecating for Go checks (aquasecurity#7377) Signed-off-by: nikpivkin <[email protected]> * feat(python): use minimum version for pip packages (aquasecurity#7348) * docs: add pkg flags to config file page (aquasecurity#7370) * feat(misconf): Add support for using spec from on-disk bundle (aquasecurity#7179) * fix(report): escape `Message` field in `asff.tpl` template (aquasecurity#7401) * fix(misconf): use module to log when metadata retrieval fails (aquasecurity#7405) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): support for ignore by nested attributes (aquasecurity#7205) Signed-off-by: nikpivkin <[email protected]> * fix(misconf): do not filter Terraform plan JSON by name (aquasecurity#7406) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): port and protocol support for EC2 networks (aquasecurity#7146) Signed-off-by: nikpivkin <[email protected]> * chore: fix allow rule of ignoring test files to make it case insensitive (aquasecurity#7415) * fix(secret): use only line with secret for long secret lines (aquasecurity#7412) * chore: update CODEOWNERS (aquasecurity#7398) Signed-off-by: knqyf263 <[email protected]> * feat(server): Make Trivy Server Multiplexer Exported (aquasecurity#7389) * feat(report): export modified findings in JSON (aquasecurity#7383) Signed-off-by: knqyf263 <[email protected]> * fix(sbom): use `NOASSERTION` for licenses fields in SPDX formats (aquasecurity#7403) * fix(misconf): do not register Rego libs in checks registry (aquasecurity#7420) Signed-off-by: nikpivkin <[email protected]> * chore(deps): Bump trivy-checks (aquasecurity#7417) Signed-off-by: nikpivkin <[email protected]> Co-authored-by: nikpivkin <[email protected]> * fix(misconf): do not recreate filesystem map (aquasecurity#7416) Signed-off-by: nikpivkin <[email protected]> * fix(secret): use `.eyJ` keyword for JWT secret (aquasecurity#7410) * fix(misconf): fix infer type for null value (aquasecurity#7424) Signed-off-by: nikpivkin <[email protected]> * fix(aws): handle ECR repositories in different regions (aquasecurity#6217) Signed-off-by: Kevin Conner <[email protected]> * fix: logger initialization before flags parsing (aquasecurity#7372) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * fix(nodejs): check all `importers` to detect dev deps from pnpm-lock.yaml file (aquasecurity#7387) * test: add integration plugin tests (aquasecurity#7299) * feat(sbom): set User-Agent header on requests to Rekor (aquasecurity#7396) Signed-off-by: Bob Callaway <[email protected]> * fix(helm): explicitly define `kind` and `apiVersion` of `volumeClaimTemplate` element (aquasecurity#7362) * chore(deps): Bump trivy-checks and pin OPA (aquasecurity#7427) Signed-off-by: nikpivkin <[email protected]> Co-authored-by: nikpivkin <[email protected]> * feat(java): add `test` scope support for `pom.xml` files (aquasecurity#7414) * fix(license): add license handling to JUnit template (aquasecurity#7409) * feat(go): use `toolchain` as `stdlib` version for `go.mod` files (aquasecurity#7163) * release: v0.55.0 [main] (aquasecurity#7271) * fix(license): stop spliting a long license text (aquasecurity#7336) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * refactor(java): add error/statusCode for logs when we can't get pom.xml/maven-metadata.xml from remote repo (aquasecurity#7451) * chore(helm): bump up Trivy Helm chart (aquasecurity#7441) * chore(deps): bump the common group across 1 directory with 19 updates (aquasecurity#7436) Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: knqyf263 <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: knqyf263 <[email protected]> * chore(deps): bump the aws group with 6 updates (aquasecurity#7468) Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix(oracle): Update EOL date for Oracle 7 (aquasecurity#7480) * fix(report): change a receiver of MarshalJSON (aquasecurity#7483) Signed-off-by: knqyf263 <[email protected]> * fix(report): fix error with unmarshal of `ExperimentalModifiedFindings` (aquasecurity#7463) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * docs(oci): Add a note About the expected Media Type for the Trivy-DB OCI Artifact (aquasecurity#7449) * feat(license): improve license normalization (aquasecurity#7131) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: DmitriyLewen <[email protected]> Co-authored-by: knqyf263 <[email protected]> * docs(db): add a manifest example (aquasecurity#7485) Signed-off-by: knqyf263 <[email protected]> * revert(java): stop supporting of `test` scope for `pom.xml` files (aquasecurity#7488) * docs: refine go docs (aquasecurity#7442) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * chore(vex): suppress openssl vulnerabilities (aquasecurity#7500) Signed-off-by: knqyf263 <[email protected]> * chore(deps): bump alpine from 3.20.0 to 3.20.3 (aquasecurity#7508) * chore(vex): add `CVE-2024-34155`, `CVE-2024-34156` and `CVE-2024-34158` in `trivy.openvex.json` (aquasecurity#7510) * fix(java): use `dependencyManagement` from root/child pom's for dependencies from parents (aquasecurity#7497) * refactor: split `.egg` and `packaging` analyzers (aquasecurity#7514) * feat(misconf): Register checks only when needed (aquasecurity#7435) * fix(misconf): Fix logging typo (aquasecurity#7473) * chore(deps): bump go-ebs-file (aquasecurity#7513) Signed-off-by: nikpivkin <[email protected]> * fix(sbom): parse type `framework` as `library` when unmarshalling `CycloneDX` files (aquasecurity#7527) * refactor(misconf): pass options to Rego scanner as is (aquasecurity#7529) Signed-off-by: nikpivkin <[email protected]> * fix(sbom): export bom-ref when converting a package to a component (aquasecurity#7340) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: amf <[email protected]> Co-authored-by: knqyf263 <[email protected]> * perf(misconf): use port ranges instead of enumeration (aquasecurity#7549) Signed-off-by: nikpivkin <[email protected]> * fix(misconf): Fixed scope for China Cloud (aquasecurity#7560) * docs(misconf): Add more info on how to use arbitrary JSON/YAML scan feat (aquasecurity#7458) * chore(deps): remove broken replaces for opa and discovery (aquasecurity#7600) * ci: cache test images for `integration`, `VM` and `module` tests (aquasecurity#7599) * ci: add `workflow_dispatch` trigger for test workflow. (aquasecurity#7606) * chore(deps): bump the common group across 1 directory with 20 updates (aquasecurity#7604) Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: knqyf263 <[email protected]> * fix(db): check `DownloadedAt` for `trivy-java-db` (aquasecurity#7592) * fix: allow access to '..' in mapfs (aquasecurity#7575) Signed-off-by: nikpivkin <[email protected]> * test: use a local registry for remote scanning (aquasecurity#7607) Signed-off-by: knqyf263 <[email protected]> * fix(misconf): escape all special sequences (aquasecurity#7558) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): add ability to disable checks by ID (aquasecurity#7536) Signed-off-by: nikpivkin <[email protected]> Co-authored-by: Simar <[email protected]> * feat(suse): added SUSE Linux Enterprise Micro support (aquasecurity#7294) Signed-off-by: Marcus Meissner <[email protected]> Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * fix(misconf): disable DS016 check for image history analyzer (aquasecurity#7540) Signed-off-by: nikpivkin <[email protected]> * ci: split `save` and `restore` cache actions (aquasecurity#7614) * refactor: fix auth error handling (aquasecurity#7615) Signed-off-by: knqyf263 <[email protected]> * feat(secret): enhance secret scanning for python binary files (aquasecurity#7223) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]> * feat(java): add empty versions if `pom.xml` dependency versions can't be detected (aquasecurity#7520) Co-authored-by: Teppei Fukuda <[email protected]> * test: use loaded image names (aquasecurity#7617) Signed-off-by: knqyf263 <[email protected]> * ci: don't use cache for `setup-go` (aquasecurity#7622) * feat: support multiple DB repositories for vulnerability and Java DB (aquasecurity#7605) Signed-off-by: nikpivkin <[email protected]> * feat(misconf): Support `--skip-*` for all included modules (aquasecurity#7579) Signed-off-by: nikpivkin <[email protected]> Co-authored-by: nikpivkin <[email protected]> * chore: add prefixes to log messages (aquasecurity#7625) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: simar7 <[email protected]> * fix(misconf): Disable deprecated checks by default (aquasecurity#7632) * chore(deps): Bump trivy-checks to v1.1.0 (aquasecurity#7631) * fix(secret): change grafana token regex to find them without unquoted (aquasecurity#7627) * feat: support RPM archives (aquasecurity#7628) Signed-off-by: knqyf263 <[email protected]> * fix(misconf): not to warn about missing selectors of libraries (aquasecurity#7638) Signed-off-by: nikpivkin <[email protected]> * release: v0.56.0 [main] (aquasecurity#7447) * fix(db): fix javadb downloading error handling [backport: release/v0.56] (aquasecurity#7646) Signed-off-by: nikpivkin <[email protected]> Co-authored-by: Nikita Pivkin <[email protected]> * release: v0.56.1 [release/v0.56] (aquasecurity#7648) * fix(sbom): add options for DBs in private registries [backport: release/v0.56] (aquasecurity#7691) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: Teppei Fukuda <[email protected]> * fix(redhat): include arch in PURL qualifiers [backport: release/v0.56] (aquasecurity#7702) Signed-off-by: knqyf263 <[email protected]> Co-authored-by: Teppei Fukuda <[email protected]> * release: v0.56.2 [release/v0.56] (aquasecurity#7694) * Make liveness probe configurable (#3) --------- Signed-off-by: yusuke.koyoshi <[email protected]> Signed-off-by: knqyf263 <[email protected]> Signed-off-by: nikpivkin <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Kevin Conner <[email protected]> Signed-off-by: Bob Callaway <[email protected]> Signed-off-by: Marcus Meissner <[email protected]> Co-authored-by: yusuke-koyoshi <[email protected]> Co-authored-by: Teppei Fukuda <[email protected]> Co-authored-by: Aruneko <[email protected]> Co-authored-by: Colm O hEigeartaigh <[email protected]> Co-authored-by: DmitriyLewen <[email protected]> Co-authored-by: afdesk <[email protected]> Co-authored-by: Nikita Pivkin <[email protected]> Co-authored-by: Alberto Donato <[email protected]> Co-authored-by: simar7 <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Itay Shakury <[email protected]> Co-authored-by: DmitriyLewen <[email protected]> Co-authored-by: aasish-r <[email protected]> Co-authored-by: Ori <[email protected]> Co-authored-by: Kevin Conner <[email protected]> Co-authored-by: Bob Callaway <[email protected]> Co-authored-by: vhash <[email protected]> Co-authored-by: psibre <[email protected]> Co-authored-by: Aqua Security automated builds <[email protected]> Co-authored-by: s-reddy1498 <[email protected]> Co-authored-by: Squiddim <[email protected]> Co-authored-by: Pierre Baumard <[email protected]> Co-authored-by: Lior Kaplan <[email protected]> Co-authored-by: amf <[email protected]> Co-authored-by: bloomadcariad <[email protected]> Co-authored-by: Sylvain Baubeau <[email protected]> Co-authored-by: Simar <[email protected]> Co-authored-by: Marcus Meissner <[email protected]> Co-authored-by: Samuel Gaist <[email protected]>

…quasecurity#7305) Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot bot requested a review from knqyf263 as a code owner August 5, 2024 14:46

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Aug 5, 2024

knqyf263 approved these changes Aug 7, 2024

View reviewed changes

knqyf263 added this pull request to the merge queue Aug 7, 2024

Merged via the queue into main with commit ac3eb9d Aug 7, 2024
12 checks passed

knqyf263 deleted the dependabot/go_modules/common-7db657fed5 branch August 7, 2024 07:11

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the common group across 1 directory with 7 updates #7305

chore(deps): bump the common group across 1 directory with 7 updates #7305

dependabot bot commented on behalf of github Aug 5, 2024

chore(deps): bump the common group across 1 directory with 7 updates #7305

chore(deps): bump the common group across 1 directory with 7 updates #7305

Conversation

dependabot bot commented on behalf of github Aug 5, 2024

Release (2023-03-21)

General Highlights

Module Highlights

Release (2023-03-20)

Module Highlights

Release (2023-03-17)

Module Highlights

Release (2023-03-16)

General Highlights

Module Highlights

v0.8.0

v0.67.0

Breaking Change

Request Body Size Limits

Topdown and Rego

Runtime, Tooling, SDK

Docs, Website, Ecosystem

Miscellaneous

0.67.0

Breaking Change

Request Body Size Limits

Topdown and Rego

Runtime, Tooling, SDK

Docs, Website, Ecosystem