dependabot[bot]
|
92d30b3689
|
build(deps): bump aquasecurity/trivy-action from 0.28.0 to 0.29.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.28.0 to 0.29.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.28.0...0.29.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-11-25 05:25:34 +00:00 |
zhzhuang-zju
|
d2c29f086d
|
image-scanning: fix ratelimiting error when downloading vulnerability db from ghcr.io
Signed-off-by: zhzhuang-zju <m17799853869@163.com>
|
2024-11-14 14:45:21 +08:00 |
|
dependabot[bot]
|
b7b9924062
|
build(deps): bump aquasecurity/trivy-action from 0.27.0 to 0.28.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.27.0 to 0.28.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.27.0...0.28.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-21 05:23:47 +00:00 |
|
dependabot[bot]
|
ac3eaa00d1
|
build(deps): bump aquasecurity/trivy-action from 0.24.0 to 0.27.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.24.0 to 0.27.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.24.0...0.27.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-14 05:40:59 +00:00 |
RainbowMango
|
e9e3c62db8
|
Update file line terminators to LF
Signed-off-by: RainbowMango <qdurenhongcai@gmail.com>
|
2024-10-11 11:05:13 +08:00 |
|
zhzhuang-zju
|
64c44b0323
|
use single source for go version
Signed-off-by: zhzhuang-zju <m17799853869@163.com>
|
2024-08-13 16:05:53 +08:00 |
|
dependabot[bot]
|
69a55c357b
|
Bump aquasecurity/trivy-action from 0.23.0 to 0.24.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.23.0 to 0.24.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.23.0...0.24.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-07-15 05:36:56 +00:00 |
|
zhzhuang-zju
|
9d73721f54
|
set the permissions required for the job in ci-image-scanning.yaml
Signed-off-by: zhzhuang-zju <m17799853869@163.com>
|
2024-07-02 14:21:46 +08:00 |
|
dependabot[bot]
|
544a7586ae
|
Bump aquasecurity/trivy-action from 0.22.0 to 0.23.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.22.0 to 0.23.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.22.0...0.23.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-06-24 05:51:08 +00:00 |
aditya7302
|
c437a18de3
|
Define top level Permission for ci-image-scanning workflow
Signed-off-by: aditya7302 <aditya7302@gmail.com>
|
2024-06-18 17:57:54 +05:30 |
|
dependabot[bot]
|
90e3c29bc1
|
Bump aquasecurity/trivy-action from 0.21.0 to 0.22.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.21.0 to 0.22.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.21.0...0.22.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-06-10 05:32:27 +00:00 |
|
dependabot[bot]
|
1ae145c7f3
|
Bump aquasecurity/trivy-action from 0.20.0 to 0.21.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.20.0 to 0.21.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.20.0...0.21.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-05-23 06:40:08 +00:00 |
|
dependabot[bot]
|
3d763a84d8
|
Bump aquasecurity/trivy-action from 0.19.0 to 0.20.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.19.0 to 0.20.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.19.0...0.20.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-05-13 05:44:29 +00:00 |
|
dependabot[bot]
|
19fe5d2436
|
Bump aquasecurity/trivy-action from 0.12.0 to 0.19.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.12.0 to 0.19.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.12.0...0.19.0)
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-04-29 05:29:48 +00:00 |
|
dependabot[bot]
|
24ce7e4da2
|
Bump actions/checkout from 3 to 4
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-04-22 05:23:40 +00:00 |
|
dependabot[bot]
|
cdb550d078
|
Bump github/codeql-action from 2 to 3
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2...v3)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-04-15 05:28:01 +00:00 |
Lan Liang
|
b825b35479
|
chore: skip push event for branches of dependabot.
Co-authored-by: zhzhuang-zju <m17799853869@163.com>
Co-authored-by: RainbowMango <qdurenhongcai@gmail.com>
Signed-off-by: Lan Liang <gcslyp@gmail.com>
|
2024-04-09 04:44:05 +00:00 |
|
zhzhuang-zju
|
c310f89c12
|
ci: image-scanning increases results display
Signed-off-by: zhzhuang-zju <m17799853869@163.com>
|
2023-10-25 16:10:15 +08:00 |
|
zhzhuang-zju
|
67af072709
|
ci: upload trivy scan results to GitHub Security tab
Signed-off-by: zhzhuang-zju <m17799853869@163.com>
|
2023-10-18 15:57:56 +08:00 |
|
zhzhuang-zju
|
6381c8795b
|
CI: add image scanning
Signed-off-by: zhzhuang-zju <m17799853869@163.com>
|
2023-10-16 21:25:31 +08:00 |