CHANGELOG
1.1.12 (2023-09-20)Bug Fixes
1.1.11 (2023-09-20)Bug Fixes
Dockerfile ARG scoping (e710764 )
remove references to Severity model (8875fcb )
1.1.10 (2023-08-15)Bug Fixes
support 1.5 spec and custom root models (f3d8373 )
TrivyScanner exception (7f8fa5d )
Reverts
1.1.9 (2023-07-13)Bug Fixes
fixing hoppr plugin load issue with pyproject.toml and security commons dependency issue (1e6e099 )
1.1.8 (2023-07-13)Bug Fixes
remove purl type filter from HopprCopPlugin (let scanners filter if they need to) (cf84328 )
typos - pretty sure "connan" should be "conan" (2b0fe21 )
1.1.7 (2023-06-01)Bug Fixes
added flush to write file contents to disk (808d2df )
1.1.6 (2023-05-16)Bug Fixes
removing npm config that was causing issues. (f33a66d )
1.1.5 (2023-04-11)Bug Fixes
Add poetry lockfile back in (1274cba )
1.1.4 (2023-04-04)Reverts
add git to test image until 1.8.0 release (d36b214 )
1.1.3 (2023-03-20)Bug Fixes
fixing grype model issues where required fields were sometimes blank in grype output. (71b55a4 )
1.1.2 (2023-03-20)Bug Fixes
fixed debian and rpm reporting for trivy. (4755549 )
1.1.1 (2023-03-09)Bug Fixes
1.1.0 (2023-03-02)Features
Bug Fixes
updated docker file to include gem install, got gemnasium caching working, added broad catch to cli (8fbe34a )
1.0.24 (2023-02-28)Bug Fixes
exposed the ability to specify os distro via the cli or environment variable. This impacts grype's ability to identify vulnerabilities for OS components. (5f71fc2 )
1.0.23 (2023-02-28)Bug Fixes
the bom generation for trivy was using pydantic and bom-ref was converted to bom_ref. This caused trivy to not report vulnerabilities. This updates the bom generation to just directly go from the dictionary to json. (c82851a )
1.0.22 (2023-02-22)Bug Fixes
Update everything in pyproject.toml to work with upstream dependencies (fa594c3 )
Update renovate (1bec628 )
Update renovate json per linter (106df54 )
1.0.21 (2023-02-09)Bug Fixes
cleaned up pre stage process method and accounting for existing vex (0b077e5 )
updated plugin to update delivered bom (5de6f52 )
1.0.20 (2023-01-26)Bug Fixes
adding poetry lock --no-update to support renovate MRs. (9ff7498 )
update unit test (0145ba7 )
updated hoppr version (020ec43 )
1.0.19 (2023-01-25)Bug Fixes
deps: updating commons version to include gitlab reporting fix (c6c1c31 )
1.0.18 (2023-01-18)Bug Fixes
1.0.17 (2022-12-16)Bug Fixes
1.0.16 (2022-10-19)Bug Fixes
fixed an issue where get_vulnerabilities_by_purl was calling get_vulnerabilities_by_sbom on the underlying scanners (e5ae0d6 )
1.0.15 (2022-10-19)Bug Fixes
remove sbom before regenerating it (4ed0470 )
removing references to internal LM resources (31e112e )
1.0.14 (2022-08-29)Bug Fixes
updating gitlab semantic release version (a1b4685 )
1.0.13 (2022-08-28)Bug Fixes
trying to get release artifacts working (cfbf1cd )
1.0.12 (2022-08-28)Bug Fixes
Adding license and sbom to release artifacts (70c5960 )
1.0.11 (2022-08-27)1.0.10 (2022-08-18)1.0.9 (2022-08-18)1.0.8 (2022-08-18)1.0.7 (2022-08-18)Bug Fixes
1.0.6 (2022-08-18)1.0.5 (2022-08-18)1.0.4 (2022-08-18)Bug Fixes
added license to the project metadata file (18fb87f )
1.0.3 (2022-08-18)1.0.2 (2022-08-17)1.0.1 (2022-08-17)Bug Fixes
changed to use common python module. Added examples to the documentation. (b0560f5 )
changed to use common python module. Added examples to the documentation. (2747d2b )
1.0.0 (2022-08-17)
Features
added file headers removed extra files, cleaned up docs. (be06039 )
use the vex format from grype (f3d1306 )
Bug Fixes
fixing pipeline issues (f6b6e51 )
fixing semantic release (abfeefd )
linting issues (585125f )
moved packages around and fixed ci issues (0e58a3d )
updated gemnasium to work properly with the comunity datasource by default, and to update every 24 hours. (11dea2a )