Teppei Fukuda

icon indicating an email [email protected]

icon location Dubai, UAE

Results 89 issues of Teppei Fukuda

Gradle dependency tree support

## Description Description License is not yet supported for `gradle.lockfile`. https://aquasecurity.github.io/trivy/v0.48/docs/coverage/language/java/ ![image](https://github.com/aquasecurity/trivy/assets/2253692/d46b8354-7ef5-4dde-a5d7-8685821f1dfc) We probably need to parse `build.gradle` and `pom.xml` in cache dirs.

kind/feature
scan/vulnerability
scan/sbom

Gradle license support

## Description Add license support for `gradle.lockfile`. The idea at the moment is to parse `pom.xml` files in the cache directory.

kind/feature
scan/sbom
scan/license

refactor: remove parallel walk

1 comment

## Description Since filepath.WalkDir is fast enough now, this PR removes `github.com/saracen/walker`. Also, it defines the `Walker` interface so that other tools can override the behavior. ## Related issues -...

Conan license support

## Description License is not yet supported for Conan. https://aquasecurity.github.io/trivy/v0.48/docs/coverage/language/c/ We probably need to parse conanfile.py in cache dirs.

kind/feature
scan/sbom
scan/license

Conda environment.yml support

## Description Conda can create the environment from the environment.yml file. https://conda.io/projects/conda/en/latest/user-guide/tasks/manage-environments.html#creating-an-environment-from-an-environment-yml-file - [x] #6565 - [ ] #6566 - [x] #6567

kind/feature
scan/sbom

chore: separate kubernetes cluster scanning

2 comment

## Description This PR separates cluster scanning from Trivy as a plugin. `trivy k8s` works as is, but Trivy downloads the k8s plugin on the fly. ## Issues - https://github.com/aquasecurity/trivy/issues/5017...

target/kubernetes

Add support for extended boot record

## Description Extended boot record (EBR) is currently not supported in VM scanning. ### Discussed in https://github.com/aquasecurity/trivy/discussions/5867

kind/feature
target/vm

Rename `trivy config` to `trivy iac` for clarity

8 comment

## Description This issue proposes renaming `trivy config` to `trivy iac`. Initially, when `trivy config` was added, we anticipated scanning Wordpress configuration files and detecting configuration errors in Nginx and...

scan/misconfiguration

feat: support SBOM

## Description Implement the [v1.2 spec](https://github.com/goharbor/pluggable-scanner-spec/blob/c976ec6e23c239810e91ee50d22fba233f924714/api/spec/scanner-adapter-openapi-v1.2.yaml) ## TODO - [x] Add capabilities in `/metadata` - [x] Handle multiple capabilities in `/scan` - [x] Generate SBOM - [x] Scan SBOM for...

feat: support Redis TLS

2 comment

Close https://github.com/aquasecurity/harbor-scanner-trivy/issues/427 This PR adds `rediss://` schema support and `SCANNER_REDIS_CA_CERT` env.