Skip to content

Commit 39b4611

Browse files
afdesksimar7
andauthored
chore: bump up Trivy version to v0.59.1 (#2406)
* chore: bump up Trivy version to v0.59.0 * chore: bump up Python to 3.8 for helm chart testing * ci: update helm chart testing workflow * chore: bump up Trivy version to v0.59.1 --------- Co-authored-by: simar7 <1254783+simar7@users.noreply.github.com>
1 parent 164ac24 commit 39b4611

File tree

6 files changed

+1043
-331
lines changed

6 files changed

+1043
-331
lines changed

.github/workflows/chart-testing.yaml

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -76,15 +76,17 @@ jobs:
7676
docker save -o trivy-operator.tar mirror.gcr.io/aquasec/trivy-operator:ct
7777
7878
kind load image-archive trivy-operator.tar
79+
7980
- name: Set up python
80-
uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38
81+
uses: actions/setup-python@v5.3.0
8182
with:
82-
python-version: 3.7
83+
python-version: '3.x'
84+
check-latest: true
85+
8386
- name: Setup chart-testing
8487
id: lint
8588
uses: helm/chart-testing-action@v2.7.0
86-
- name: Install yamllint
87-
run: pip install yamllint
89+
8890
- name: Run chart-testing
8991
run: ct lint-and-install --validate-maintainers=false --charts deploy/helm
9092
- name: Delete kind cluster

deploy/helm/README.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -146,7 +146,7 @@ Keeps security report resources updated
146146
| trivy.image.pullPolicy | string | `"IfNotPresent"` | pullPolicy is the imge pull policy used for trivy image , valid values are (Always, Never, IfNotPresent) |
147147
| trivy.image.registry | string | `"mirror.gcr.io"` | registry of the Trivy image |
148148
| trivy.image.repository | string | `"aquasec/trivy"` | repository of the Trivy image |
149-
| trivy.image.tag | string | `"0.58.0"` | tag version of the Trivy image |
149+
| trivy.image.tag | string | `"0.59.1"` | tag version of the Trivy image |
150150
| trivy.imageScanCacheDir | string | `"/tmp/trivy/.cache"` | imageScanCacheDir the flag to set custom path for trivy image scan `cache-dir` parameter. Only applicable in image scan mode. |
151151
| trivy.includeDevDeps | bool | `false` | includeDevDeps include development dependencies in the report (supported: npm, yarn) (default: false) note: this flag is only applicable when trivy.command is set to filesystem |
152152
| trivy.insecureRegistries | object | `{}` | The registry to which insecure connections are allowed. There can be multiple registries with different keys. |

deploy/helm/values.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -343,7 +343,7 @@ trivy:
343343
# -- repository of the Trivy image
344344
repository: aquasec/trivy
345345
# -- tag version of the Trivy image
346-
tag: 0.58.0
346+
tag: 0.59.1
347347
# -- imagePullSecret is the secret name to be used when pulling trivy image from private registries example : reg-secret
348348
# It is the user responsibility to create the secret for the private registry in `trivy-operator` namespace
349349
imagePullSecret: ~

deploy/static/trivy-operator.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -3045,7 +3045,7 @@ metadata:
30453045
app.kubernetes.io/managed-by: kubectl
30463046
data:
30473047
trivy.repository: "mirror.gcr.io/aquasec/trivy"
3048-
trivy.tag: "0.58.0"
3048+
trivy.tag: "0.59.1"
30493049
trivy.imagePullPolicy: "IfNotPresent"
30503050
trivy.additionalVulnerabilityReportFields: ""
30513051
trivy.severity: "UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL"

0 commit comments

Comments
 (0)