DmitriyLewen
DmitriyLewen
We added `convert` mode to avoid running Trivy multiple times . Take a looks on this example: User needs to run Trivy 3 times: - trivy filesystem --scanners misconfig --include-non-failures...
> In this case, users do not need to pass --include-non-failures=false since the base json does not contain successful results. This is incorrect. Because base json should include successful checks...
> Why? In such a case, the user needs to pass --include-non-failures when scanning. Right. @simar7 wdyt?
I'm worried that we'll have 2 different approaches for `--list-all-pkgs` (though this is not quite the same case, since other related formats require this flag) and `--include-non-failures` but I'm not...
Yeah, i also found this problem. I made a mistake and didn't mark the child dependencies of test dependency as Dev. I added fix for that in #7484 (see https://github.com/aquasecurity/trivy/pull/7484/commits/dba9f9f7f03afe6dd3cb111e3a14bcb050233303)
despite this being an improvement - i would also suggest adding #7484 to the backport, because the speed of Trivy for `pom.xml` files is now significantly lower than in the...
@knqyf263 Created #7486
Looks like you are right...
Yes. You are right. Rushing can create more bugs. I created #7488 to revert #7414.
Hello @coheigea We have decided to roll back the changes and release [v0.55.1](https://github.com/aquasecurity/trivy/releases/tag/v0.55.1) We will try to fix all the issues related to this and bring this functionality back in...