chore: Bump minor dev version (#85)

daniele-moro · web-flow · commit c004785adbc8 · 2025-04-28T12:18:50.000+02:00
diff --git a/.github/workflows/pre-merge.yml b/.github/workflows/pre-merge.yml
@@ -88,6 +88,7 @@ jobs:
       prefix_tag_separator: "/"
       project_folder: ${{ matrix.project_folder }}
       trivy_image_skip:  "postgres:16.4"
+      trivy_config_path: '${{ matrix.project_folder }}/trivy.yaml'
     secrets: inherit
   pre-merge-os-profiles:
     needs: pre-checks
diff --git a/.gitignore b/.gitignore
@@ -15,6 +15,7 @@ venv*
 ci/
 clamav*
 trivy*
+!trivy.yaml
 
 # Go workspace file
 go.work
diff --git a/api/VERSION b/api/VERSION
@@ -1 +1 @@
-1.33.2-dev
+1.34.0-dev
diff --git a/bulk-import-tools/VERSION b/bulk-import-tools/VERSION
@@ -1 +1 @@
-1.5.4-dev
+1.6.0-dev
diff --git a/exporters-inventory/VERSION b/exporters-inventory/VERSION
@@ -1 +1 @@
-1.18.2
+1.19.0-dev
diff --git a/inventory/.trivyignore b/inventory/.trivyignore
@@ -1,61 +1,5 @@
 # SPDX-FileCopyrightText: (C) 2025 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-# CVE-2023-45288 is caused by older golang.org/x/net.
-# This CVE has already been fixed in the mainline, but is not released yet:
-# https://github.com/ariga/atlas/pull/2694
-# Anyway, golang.org/x/net is imported indirectly by atlas and atlas do not have any HTTP server active,
-# see https://github.com/ariga/atlas/issues/1435#issuecomment-1418984184
-# TODO: upgrade to newest atlas and remove this CVE ignore, once the latest atlas is released.
-CVE-2023-45288
-
-# PostgreSQL CVEs
-CVE-2023-45853
-CVE-2023-7104
-CVE-2023-6780
-
-# New ones - lowered security targets
-# Postgres HIGH
-CVE-2023-27561
-CVE-2024-21626
-CVE-2024-28085
-CVE-2023-47038
-CVE-2023-31484
-CVE-2024-2961
-CVE-2023-6779
-CVE-2023-6246
-CVE-2024-25062
-CVE-2023-50868
-CVE-2023-50387
-CVE-2023-2953
-CVE-2024-26462
-CVE-2024-0567
-CVE-2024-0553
-CVE-2024-33599
-CVE-2023-7104
-
-# Postgres MEDIUM
-CVE-2022-29162
-CVE-2023-28642
-CVE-2023-4641
-CVE-2024-0727
-CVE-2023-6237
-CVE-2023-6129
-CVE-2023-5678
-CVE-2023-50495
-CVE-2023-45322
-CVE-2023-39615
-CVE-2023-7008
-CVE-2023-4039
-CVE-2024-0232
-CVE-2024-22365
-CVE-2024-31852
-CVE-2024-26461
-CVE-2024-26458
-CVE-2024-28835
-CVE-2024-28834
-CVE-2023-5981
-CVE-2024-2236
-CVE-2024-33600
-CVE-2024-33601
-CVE-2024-33602
+# This is for Atlas binary, which is not yet released with a fix for this.
+CVE-2025-22869
diff --git a/inventory/VERSION b/inventory/VERSION
@@ -1 +1 @@
-2.23.3-dev
+2.24.0-dev
diff --git a/inventory/trivy.yaml b/inventory/trivy.yaml
@@ -0,0 +1,5 @@
+---
+# SPDX-FileCopyrightText: (C) 2025 Intel Corporation
+# SPDX-License-Identifier: Apache-2.0
+
+ignorefile: inventory/.trivyignore
diff --git a/os-profiles/VERSION b/os-profiles/VERSION
@@ -1 +1 @@
-0.3.1-dev
+0.4.0-dev
diff --git a/tenant-controller/VERSION b/tenant-controller/VERSION
@@ -1 +1 @@
-0.17.2-dev
+0.18.0-dev
