2025_01

Chores

• chore: prepare for release 2025_01 by @StefanFl in #237
• chore: merge to main for release 2025_01 by @StefanFl in #238

##Dependencies

• chore(deps): update dependency cryptolyzer to v0.12.6 by @renovate in #235
• chore(deps): update dependency checkov to v3.2.347 by @renovate in #234
• chore(deps): update python, gitleaks, trivy and tfsec by @StefanFl in #236

Full Changelog: v2024_12...v2025_01

2024_12

Chores

• chore: prepare for release 2024_12 by @StefanFl in #232
• chore: merge to main for release 2024_12 by @StefanFl in #233

Dependencies

• chore(deps): update golang docker tag to v1.23.4 by @renovate in #230
• chore(deps): update dependency bandit to v1.8.0 by @renovate in #229
• chore(deps): update dependency semgrep to v1.101.0 by @renovate in #222
• chore(deps): update dependency checkov to v3.2.344 by @renovate in #215
• chore(dependencies): updates for release 2024_12 by @StefanFl in #231

Full Changelog: v2024_11_3...v2024_12

2024_11_3

Chores

• chore: pin version of docker image by @StefanFl in #227
• chore: merge to main for release 2024_11_3 by @StefanFl in #228

Full Changelog: v2024_11_2...v2024_11_3

2024_11_2

Thanks to @Lucassino for the feedback and ideas that led to this release.

Features

• feat: action and template to check security gate by @StefanFl in #223
• feat: report disabled security gate by @StefanFl in #224

Fixes

• fix: SARIF must be in capital letters to match SecObserve's parser name by @StefanFl in #221
• fix: exit code 0 for disabled security gate by @StefanFl in #225

Chores

• chore: merge to main for release 2024_11_2 by @StefanFl in #226

Full Changelog: v2024_11_1...v2024_11_2

2024_11_1

Features

• feat: support scanning SBOMs with Grype by @StefanFl in #216

Fixes

• fix: set default for suppress licenses in importer action to false by @StefanFl in #218

Chores

• chore: Grype image doesn't pull the Docker image anymore by @StefanFl in #217
• chore: merge to main for release 2024_11_1 by @StefanFl in #219

Full Changelog: v2024_11...v2024_11_1

2024_11

Breaking change

• The Grype, Trivy Filesystem and Trivy Image GitHub actions / GitLab templates now don't import license information by default, unless the parameter SO_SUPPRESS_LICENSES is set to false.

Features

• feat: parameter to suppress license import for CycloneDX scanners by @StefanFl in #210

Fixes

• fix: only print SO_SUPPRESS_LICENSES if it is set by @StefanFl in #212

Chores

• chore: set limits for python and node versions by @StefanFl in #209
• chore: document SO_SUPPRESS_LICENSES in importer action by @StefanFl in #213
• chore: merge to main for release 2024_11 by @StefanFl in #214

Dependencies

• chore(deps): update dependency semgrep to v1.96.0 by @renovate in #203
• chore(deps): update dependency checkov to v3.2.283 by @renovate in #204
• chore(deps): update golang docker tag to v1.23.3 by @renovate in #208
• chore: update Python, Gitleaks, Grype and Trivy by @StefanFl in #211

Full Changelog: v2024_10...v2024_11

2024_10

Features

• feat: add trivy secrets scanning for images and filesystems by @StefanFl in #200

Chores

• chore: merge to main for release 2024_10 by @StefanFl in #202

Dependencies

• chore(deps): update golang docker tag to v1.23.2 by @renovate in #198
• chore(deps): update dependency checkov to v3.2.257 by @renovate in #197
• chore(deps): upgrades of KICS, Gitleaks, Grype, Trivy and tfsec by @StefanFl in #201

Full Changelog: v2024_09...v2024_10

2024_09

Chores:

• chore: test without docker pull for trivy by @StefanFl in #194
• chore: remove docker pull before trivy image by @StefanFl in #195
• chore: merge to main for release 2024_09 by @StefanFl in #196

Dependencies

• chore(deps): update dependency checkov to v3.2.255 by @renovate in #187
• chore(deps): update dependency semgrep to v1.90.0 by @renovate in #188
• chore(deps): update golang docker tag to v1.23.1 by @renovate in #189
• chore(deps): update python docker tag to v3.12.6 by @renovate in #191
• chore(deps): update dependency bandit to v1.7.10 by @renovate in #192
• chore(deps): updates of GitLeaks, Grype and Trivy by @StefanFl in #193

Full Changelog: v2024_08...v2024_09

2024_08

Chores:

• chore: merge to main for release 2024_08 by @StefanFl in #186

Dependencies

• chore(deps): update dependency checkov to v3.2.234 by @renovate in #180
• chore(deps): update dependency semgrep to v1.85.0 by @renovate in #181
• chore(deps): update dependency pyyaml to v6.0.2 by @renovate in #182
• chore(deps): update golang docker tag to v1.23.0 by @renovate in #183
• chore(deps): update python docker tag to v3.12.5 by @renovate in #184
• chore(deps): upgrades of Grype, Trivy and KICS by @StefanFl in #185

Full Changelog: v2024_07...v2024_08

2024_07

Chore

• chore: merge to main for release 2024_07 by @StefanFl in #179

Dependencies

• chore(deps): update dependency checkov to v3.2.194 by @renovate in #172
• chore(deps): update dependency bandit to v1.7.9 by @renovate in #174
• chore(deps): update docker/build-push-action action to v6 by @renovate in #175
• chore(deps): update dependency semgrep to v1.80.0 by @renovate in #176
• chore(deps): update golang docker tag to v1.22.5 - autoclosed by @renovate in #177
• chore: updates of gitleaks, grype, kics, trivy and tfsec by @StefanFl in #178

Full Changelog: v2024_06...v2024_07