Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package trivy for openSUSE:Factory checked in at 2024-12-03 20:47:06 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/trivy (Old) and /work/SRC/openSUSE:Factory/.trivy.new.28523 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "trivy" Tue Dec 3 20:47:06 2024 rev:71 rq:1227939 version:0.57.1 Changes: -------- --- /work/SRC/openSUSE:Factory/trivy/trivy.changes 2024-10-24 15:43:47.270695820 +0200 +++ /work/SRC/openSUSE:Factory/.trivy.new.28523/trivy.changes 2024-12-03 20:48:26.190120787 +0100 @@ -1,0 +2,58 @@ +Mon Dec 02 13:10:12 UTC 2024 - c...@suse.com + +- Update to version 0.57.1: + * release: v0.57.1 [release/v0.57] (#7943) + * feat: Update registry fallbacks [backport: release/v0.57] (#7944) + * fix(redhat): don't return error if `root/buildinfo/content_manifests/` contains files that are not `contentSets` files [backport: release/v0.57] (#7939) + * test: change branch in spdx schema link to check in integration tests [backport: release/v0.57] (#7940) + * release: v0.57.0 [main] (#7710) + * chore: lint `errors.Join` (#7845) + * feat(db): append errors (#7843) + * docs(java): add info about supported scopes (#7842) + * docs: add example of creating whitelist of checks (#7821) + * chore(deps): Bump trivy-checks (#7819) + * fix(go): Do not trim v prefix from versions in Go Mod Analyzer (#7733) + * fix(k8s): skip resources without misconfigs (#7797) + * fix(sbom): use `Annotation` instead of `AttributionTexts` for `SPDX` formats (#7811) + * fix(cli): add config name to skip-policy-update alias (#7820) + * fix(helm): properly handle multiple archived dependencies (#7782) + * refactor(misconf): Deprecate `EXCEPTIONS` for misconfiguration scanning (#7776) + * fix(k8s)!: support k8s multi container (#7444) + * fix(k8s): support kubernetes v1.31 (#7810) + * docs: add Windows install instructions (#7800) + * ci(helm): auto public Helm chart after PR merged (#7526) + * feat: add end of life date for Ubuntu 24.10 (#7787) + * feat(report): update gitlab template to populate operating_system value (#7735) + * feat(misconf): Show misconfig ID in output (#7762) + * feat(misconf): export unresolvable field of IaC types to Rego (#7765) + * refactor(k8s): scan config files as a folder (#7690) + * fix(license): fix license normalization for Universal Permissive License (#7766) + * fix: enable usestdlibvars linter (#7770) + * fix(misconf): properly expand dynamic blocks (#7612) + * feat(cyclonedx): add file checksums to `CycloneDX` reports (#7507) + * fix(misconf): fix for Azure Storage Account network acls adaptation (#7602) + * refactor(misconf): simplify k8s scanner (#7717) + * feat(parser): ignore white space in pom.xml files (#7747) + * test: use forked images (#7755) + * fix(java): correctly inherit `version` and `scope` from upper/root `depManagement` and `dependencies` into parents (#7541) + * fix(misconf): check if property is not nil before conversion (#7578) + * fix(misconf): change default ACL of digitalocean_spaces_bucket to private (#7577) + * feat(misconf): ssl_mode support for GCP SQL DB instance (#7564) + * test: define constants for test images (#7739) + * docs: add note about disabled DS016 check (#7724) + * feat(misconf): public network support for Azure Storage Account (#7601) + * feat(cli): rename `trivy auth` to `trivy registry` (#7727) + * docs: apt-transport-https is a transitional package (#7678) + * refactor(misconf): introduce generic scanner (#7515) + * fix(cli): `clean --all` deletes only relevant dirs (#7704) + * feat(cli): add `trivy auth` (#7664) + * fix(sbom): add options for DBs in private registries (#7660) + * docs(report): fix reporting doc format (#7671) + * fix(repo): `git clone` output to Stderr (#7561) + * fix(redhat): include arch in PURL qualifiers (#7654) + * fix(report): Fix invalid URI in SARIF report (#7645) + * docs(report): Improve SARIF reporting doc (#7655) + * fix(db): fix javadb downloading error handling (#7642) + * feat(cli): error out when ignore file cannot be found (#7624) + +------------------------------------------------------------------- Old: ---- trivy-0.56.2.tar.zst New: ---- trivy-0.57.1.tar.zst ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ trivy.spec ++++++ --- /var/tmp/diff_new_pack.hiHprP/_old 2024-12-03 20:48:29.142244542 +0100 +++ /var/tmp/diff_new_pack.hiHprP/_new 2024-12-03 20:48:29.162245380 +0100 @@ -1,7 +1,7 @@ # # spec file for package trivy # -# Copyright (c) 2023 SUSE LLC +# Copyright (c) 2024 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: trivy -Version: 0.56.2 +Version: 0.57.1 Release: 0 Summary: A Simple and Comprehensive Vulnerability Scanner for Containers License: Apache-2.0 @@ -25,9 +25,9 @@ URL: https://github.com/aquasecurity/trivy Source: %{name}-%{version}.tar.zst Source1: vendor.tar.zst -BuildRequires: golang(API) = 1.22 BuildRequires: golang-packaging BuildRequires: zstd +BuildRequires: golang(API) = 1.22 Requires: ca-certificates Requires: git-core Requires: rpm ++++++ _scmsync.obsinfo ++++++ --- /var/tmp/diff_new_pack.hiHprP/_old 2024-12-03 20:48:29.538261143 +0100 +++ /var/tmp/diff_new_pack.hiHprP/_new 2024-12-03 20:48:29.566262317 +0100 @@ -1,5 +1,5 @@ -mtime: 1729689952 -commit: 4c05bd9c33e94651288d974fbdef1c2b871663758cd3912a5f1d2e77c19756c6 -url: https://src.opensuse.org/dirkmueller/trivy.git -revision: 4c05bd9c33e94651288d974fbdef1c2b871663758cd3912a5f1d2e77c19756c6 +mtime: 1733152795 +commit: 7b167d9c3b42696274d8b3dffebce782481d162e1c1407e3c3db6c328a8e3422 +url: https://src.opensuse.org/cwh/trivy.git +revision: 7b167d9c3b42696274d8b3dffebce782481d162e1c1407e3c3db6c328a8e3422 ++++++ _service ++++++ --- /var/tmp/diff_new_pack.hiHprP/_old 2024-12-03 20:48:29.762270534 +0100 +++ /var/tmp/diff_new_pack.hiHprP/_new 2024-12-03 20:48:29.786271540 +0100 @@ -2,7 +2,7 @@ <service name="tar_scm" mode="manual"> <param name="url">https://github.com/aquasecurity/trivy</param> <param name="scm">git</param> - <param name="revision">v0.56.2</param> + <param name="revision">v0.57.1</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> <param name="changesgenerate">enable</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.hiHprP/_old 2024-12-03 20:48:29.946278248 +0100 +++ /var/tmp/diff_new_pack.hiHprP/_new 2024-12-03 20:48:29.982279757 +0100 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/aquasecurity/trivy</param> - <param name="changesrevision">f2252c833d4dee18546577f0c32ceb83c8bf20ae</param></service></servicedata> + <param name="changesrevision">b7947b37ee47ea79dff550462c297164eb47aa9e</param></service></servicedata> (No newline at EOF) ++++++ build.specials.obscpio ++++++ diff: old/*: No such file or directory diff: new/*: No such file or directory ++++++ trivy-0.56.2.tar.zst -> trivy-0.57.1.tar.zst ++++++ /work/SRC/openSUSE:Factory/trivy/trivy-0.56.2.tar.zst /work/SRC/openSUSE:Factory/.trivy.new.28523/trivy-0.57.1.tar.zst differ: char 7, line 1 ++++++ vendor.tar.zst ++++++ /work/SRC/openSUSE:Factory/trivy/vendor.tar.zst /work/SRC/openSUSE:Factory/.trivy.new.28523/vendor.tar.zst differ: char 6, line 1
