Teppei Fukuda

icon indicating an email [email protected]

icon location Dubai, UAE

Results 89 issues of Teppei Fukuda

fix json tests

1 comment

Before: ``` $ go test ./... # golang.org/x/vulndb/osv [golang.org/x/vulndb/osv.test] osv/json_test.go:18:3: cannot use []struct { Module string; Package string; Symbols []string; Versions []report.VersionRange }{...} (type []struct { Module string; Package string;...

cla: yes

Fix OCI repository URL resolution

Same as https://github.com/openvex/discovery/pull/40

chore: update CODEOWNERS

## Description Update K8s owner ## Checklist - [x] I've read the [guidelines for contributing](https://aquasecurity.github.io/trivy/latest/community/contribute/pr/) to this repository. - [x] I've followed the [conventions](https://aquasecurity.github.io/trivy/latest/community/contribute/pr/#title) in the PR title. - [...

feat(report): export modified findings in JSON

## Description `--show-suppressed` exports modified findings in JSON. ### Before ``` $ cat .trivyignore CVE-2022-0563 $ trivy image -q -f json --show-suppressed debian:11 | jq ".Results[].ExperimentalModifiedFindings | length" 0 ```...

Enable `--show-suppressed` in JSON format

## Description `--show-suppressed` is currently available with the table format as [documented](https://aquasecurity.github.io/trivy/v0.54/docs/configuration/filtering/#suppression). This is because this feature is still an experimental feature, and we don't want to encourage users to...

kind/documentation

test(plugin): add integration tests

## Description We have sufficient unit tests on plugins, but we do not have integration or e2e tests. We should add simple tests to prevent [these problems](https://github.com/aquasecurity/trivy/issues/7273). It is a...

kind/testing

feat(slemicro): Add support for the SUSE Linux Enterprise Micro family

1 comment

### Discussed in https://github.com/aquasecurity/trivy/discussions/7217

kind/feature
scan/vulnerability
target/container-image

feat(golang): support toolchain directive

## Description Currently, when scanning Go binaries, the stdlib version is identified from the `go version -m` result, but not when scanning `go.mod`. With the introduction of [Go Toolchains](https://go.dev/doc/toolchain), the...

feat: enhance secret scanning for specific binary files

## Description Currently, Trivy skips binary files during secret scanning. However, [recent incidents](https://blog.pypi.org/posts/2024-07-08-incident-report-leaked-admin-personal-access-token/) have shown that certain binary files, such as `.pyc` files, may contain valuable information for secret detection....

kind/feature
scan/secret
target/container-image

feat(license): Improve license normalization

### Discussed in https://github.com/aquasecurity/trivy/discussions/7130

kind/feature
scan/license