defsec
defsec copied to clipboard
Published
20 hours ago •
aquasecurity
aquasecurity
chore(deps): bump github.com/aquasecurity/trivy-policies from 0.8.0 to 0.10.0
Bumps github.com/aquasecurity/trivy-policies from 0.8.0 to 0.10.0.
Release notes
Sourced from github.com/aquasecurity/trivy-policies's releases.
v0.10.0
What's Changed
- chore(deps): bump github.com/open-policy-agent/opa from 0.60.0 to 0.61.0 by
@dependabotin aquasecurity/trivy-policies#75- fix(checks): add missing ID field by
@nikpivkinin aquasecurity/trivy-policies#81- fix: apply policy for gke provider only by
@chen-keinanin aquasecurity/trivy-policies#82- refactor(deps): Add id and docGen cmds by
@simar7in aquasecurity/trivy-policies#80- fix(aws): don't check SSLSupportMethod in AVD-AWS-0013 by
@nikpivkinin aquasecurity/trivy-policies#85- chore(tests): Add policy based tests by
@simar7in aquasecurity/trivy-policies#70- chore(deps): bump github.com/docker/docker from 25.0.2+incompatible to 25.0.3+incompatible by
@dependabotin aquasecurity/trivy-policies#76- chore(deps): bump github.com/owenrumney/squealer from 1.2.1 to 1.2.2 by
@dependabotin aquasecurity/trivy-policies#84- fix(kubernetes): fix the KSV001 check by
@nikpivkinin aquasecurity/trivy-policies#86- chore(deps): bump github.com/testcontainers/testcontainers-go from 0.27.0 to 0.28.0 by
@dependabotin aquasecurity/trivy-policies#83Full Changelog: https://github.com/aquasecurity/trivy-policies/compare/v0.9.0...v0.10.0
v0.9.0
What's Changed
- feat(aws): improve wildcard checking in policies by
@nikpivkinin aquasecurity/trivy-policies#61- fix: Makefile: rules/ moved to checks/ by
@candrewsin aquasecurity/trivy-policies#59- fix: remove test-rego from Makefile by
@candrewsin aquasecurity/trivy-policies#58- chore(deps): bump github.com/aquasecurity/defsec from 0.93.2-0.20240112041815-f53aebc35cb9 to 0.94.1 by
@dependabotin aquasecurity/trivy-policies#63- chore(deps): bump github.com/docker/docker from 24.0.7+incompatible to 25.0.0+incompatible by
@dependabotin aquasecurity/trivy-policies#64- fix: add system authenticate bind protection policy by
@chen-keinanin aquasecurity/trivy-policies#65- chore: add a command to run OPA with custom functions by
@nikpivkinin aquasecurity/trivy-policies#69- fix(checks): handle
file:andmulti:in AVD-DS-005 by@candrewsin aquasecurity/trivy-policies#60- fix(checks): handle
file:andmulti:in AVD-DS-0011 by@candrewsin aquasecurity/trivy-policies#56- fix(checks): check the Seccomp of the controllers by
@nikpivkinin aquasecurity/trivy-policies#71- fix: change system authenticate bind severity to low by
@chen-keinanin aquasecurity/trivy-policies#74- feat(checks): Add check to detect Leaky Vessels exploit by
@simar7in aquasecurity/trivy-policies#72- chore: restore the OPA installation by
@nikpivkinin aquasecurity/trivy-policies#73- chore(deps): bump github.com/docker/docker from 25.0.0+incompatible to 25.0.2+incompatible by
@dependabotin aquasecurity/trivy-policies#68New Contributors
@candrewsmade their first contribution in aquasecurity/trivy-policies#59@chen-keinanmade their first contribution in aquasecurity/trivy-policies#65Full Changelog: https://github.com/aquasecurity/trivy-policies/compare/v0.8.0...v0.9.0
Commits
b3452f5Merge pull request #83 from aquasecurity/dependabot/go_modules/github.com/tes...0935e1eMerge pull request #86 from nikpivkin/fix-ksv001fadec94fix(kubernetes): fix the KSV001 checkcdb0689chore(deps): bump github.com/testcontainers/testcontainers-go0c4cf07Merge pull request #84 from aquasecurity/dependabot/go_modules/github.com/owe...6b69a32Merge pull request #76 from aquasecurity/dependabot/go_modules/github.com/doc...dd90b7achore(deps): bump github.com/docker/docker234eea7Merge pull request #70 from aquasecurity/add-policy-testsf887be5Update README.md76cc3bbrebase- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}
This PR is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 10 days.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}