Skip to content

v0.23.0
Compare
Choose a tag to compare
@github-actions github-actions released this 24 Aug 06:40
· 118 commits to main since this release
v0.23.0
8150322
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

⚠️ Please use v0.23.2 or newer instead of this one that contains an issue about organization described below

Previous release notes docker_scout_version

Highlights

Cache and Temporary Files

You can know visualise the temporary and cached files generated by docker scout and delete them:

  • docker scout cache df
    scout_cache_df

  • docker scout cache prune
    scout_cache_prune

Display Only Packages

docker scout cves has a new output format only-packages. It only displays the list of packages and for each their vulnerabilities.

scout_packages

This can be enhanced by adding other filters, for instance:

  • --only-package-type golang
  • --only-vuln-packages
    With that you have a very quick view of the packages you probably want to upgrade.

scout_packages

Environments

docker scout environment allows to list available environments, list images in an environment and record an image to an environment.

scout_env

Namespace of Docker Organization

A new flag --org has been added to many commands. It allows to indicate the right namespace of the Docker organization you are using. It defines the context on scout.docker.com when you refer to non Hub images.

To make it easy, you can configure a default organization that will be used unless you specified --org. That way you configure it once and you're done.

scout_config

What's Changed

  • remove uses of docker engine "internals" and fix broken mocks by @thaJeztah
  • Update Go and go dependencies by @cdupuis
  • go.mod: update github.com/docker/docker v24.0.5 to fix go1.20.6 compat by @thaJeztah
  • feat: list and prune temporary and cache files by @eunomie
  • feat: help user raising bugs and feature requests by @eunomie
  • Add namespace to all DSO queries by @cdupuis
  • feat: add only-packages output format for cves command by @eunomie
  • feat: allow to configure the default namespace by @eunomie
  • Initial version of VEX support by @cdupuis
  • feat: display scout logo by @eunomie
  • allow to filter out non vulnerable packages by @eunomie
  • GHA namespace by @eunomie
  • pick a logo that looks smoother by @eunomie
  • Replace stream by environment by @eunomie
  • ref: make DSO interface public by @eunomie
  • feat: improve sbom caching by @eunomie
  • Update syft 0.87.1 by @cdupuis
  • fix: hint to docker scout cache prune by @eunomie
  • improve login message to the user by @eunomie
  • ref: rename namespace flag to org by @eunomie
  • docs: namespace of the docker organization by @eunomie

Contributors

cdupuis, eunomie, and thaJeztah
Assets 9
Loading