Skip to content

rddepman: bump trivy from 0.69.3 to 0.70.0#10150

Merged
jandubois merged 1 commit intomainfrom
rddepman/trivy/0.69.3-to-0.70.0
Apr 17, 2026
Merged

rddepman: bump trivy from 0.69.3 to 0.70.0#10150
jandubois merged 1 commit intomainfrom
rddepman/trivy/0.69.3-to-0.70.0

Conversation

@rancherbot
Copy link
Copy Markdown

@rancherbot rancherbot commented Apr 17, 2026

v0.70.0 (v0.70.0)

Changelog

  • 8a3177aedf7ee0864920eb1852eef031cd3742b8 release: v0.70.0 [main] (VZ is experimental according to the docs but not on the UI #10105)
  • 974de495449f2bef46fdc0654f57d61da1452d8a chore(deps): bump go.opentelemetry.io/otel/sdk from 1.42.0 to 1.43.0 (#10496)
  • 21755974af6155e55652e2088be8f5c03beceb25 chore(deps): bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2.0.6 (#10526)
  • 50c7a1ecb0b279b4980fa2631a2c596c77e426d4 chore(deps): bump the common group across 1 directory with 8 updates (#10540)
  • 885fbcedaf6057b5ac526efa9991c624272153cd chore(deps): bump the docker group across 1 directory with 2 updates (#10538)
  • 7ee3e1eeb0faf69a08837a3f42678e5e7f314286 fix: use Development category for GoReleaser discussions (#10530)
  • 6dbe3691f5158594c52783b95895a835981f8836 chore(deps): bump testcontainers-go to v0.42.0 (#10531)
  • 21e6888c7be3ef017516daa644716f110cb8d901 chore: update CODEOWNERS (#10529)
  • 35d28e81e9226d42de9c20e21fd954eb9061cfd3 chore(deps): bump helm.sh/helm/v3 from 3.20.1 to 3.20.2 (#10511)
  • 6d40a9826c0ec7f4a183962c23c142c7f7e8d6df chore(deps): bump github.com/hashicorp/go-getter from 1.8.5 to 1.8.6 (#10510)
  • 848f41b716fab55cab8760a5b8b30f5891aff741 chore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 (#10449)
  • aa8d5025a3906bcc24c899f01aa959fc75a20039 ci: migrate from mkdocs-material-insiders to mkdocs-material (#10509)
  • d2245dea4836f9fcc58a008f88099488107cd0be chore: remove aquasecurity/homebrew-trivy tap from GoReleaser (#10508)
  • 57c9cd36b7a5cc64f108fd790b6070afa85240d2 ci: update runners for workflows that interact with GitHub API (#10502)
  • 42f73ae3cc5d76e8bbf708fe21d7f1f64bced804 ci: rename tokens and update runners (#10500)
  • 87b62eecb0b49abf373ff630011bd055e2dd3e98 ci: trigger helm chart publishing via helm-charts workflow (#10474)
  • 6be4a270d1bb3f0f3dd01057285214ca5b3b9296 ci: remove ruleset update step from release-please workflow (#10499)
  • 15612157b9df4ac365fc403717b8ee0bc4dabad2 ci: use large runner and replace ORG_REPO_TOKEN in release-please workflow (#10498)
  • c24d3eb3ba820b0e9f911694d9f64bc6c018f467 ci: trigger rpm/deb deployment via trivy-repo workflow (#10476)
  • bda9710eb0c4c7d5ba1bc60bbaa06d43dc3c523a fix: remove os.Stdout from wazero module config (#10403)
  • 1a6f7a199123cd265476d8de78a86055b75bd111 chore(deps): bump the common group across 1 directory with 22 updates (#10408)
  • 297e7fa461a9f3ee0c2f96cd54c062d9e914ac07 chore(deps): bump google.golang.org/grpc from 1.78.0 to 1.79.3 (#10407)
  • 20458b836b71b2bed72d31ebba1ba9572333dcfd fix(flag): validate template file extension (#10296)
  • e9e9e8c6bd914b4d4802107bbf8d0c40bad1dd57 fix(sbom): preserve Red Hat BuildInfo when scanning SBOMs without layer info (#10378)
  • f207ec693b23b6d5114dbf3b309903689b93073d fix: handle Go 1.26 GOEXPERIMENT version format change (#10351)
  • 4cf44985c58575850138c9cc3780b201dfad7c09 fix(python): handle multiple version specifiers in requirements.txt (#10361)
  • 51c159920846a0330c02d40af9ae0e41cfcaa441 ci: run Trivy version bump in trivy-action (#10272)
  • 12ab3cee257f89b3b180c38bc2d765dc4c7918a1 fix(python): nil pointer dereference with optional poetry groups without dependencies (#10359)
  • aef4ecc9f971b7d8f4699918060b81cf62fa907b ci: replace personal email with github-actions[bot] in workflows (#10369)
  • 1962aa9c50c7bacba72befe57ef3b10eacf00311 chore: replace smithy epoch parsing with stdlib time.Unix (#10286)
  • 891cd79a9d6019be2fdc2eef038453ef7fa286b6 test: update golden files for purl changes (#10372)
  • fb6a83a55ff2adf62aa8b7c915572596cdb54c4d ci: add zizmor to scan GitHub Actions workflows (#10322)
  • 778a853f8d7e78e48000940dc0bacbd7b9b90efe refactor: log statuses as strings (#10285)
  • 88a91cfde7801c3a5ba3adc65a6343c4bbc08959 ci: add build provenance attestations for release artifacts (#10316)
  • 33b9d8ec318bb1f4081371a0a5fd46071080aef1 fix(sbom): add NOASSERTION for licenseDeclared/licenseConcluded in SPDX non-library packages (#10368)
  • e5da6deee9904d00cb4fd5ea1f67e8a1711ec8dd fix(report): set correct sarif ROOTPATH uri when scanning a git repository (#10366)
  • d7fb3558db610dc08ef1c3e22dd37082180368b2 perf(plugin): optimize directory traversal by replacing filepath.Walk with filepath.WalkDir (#10325)
  • a96cede0849fd05a16874e9e193f0f3a47bdbc14 docs: correct typos in CHANGELOG and diagram (#10320)
  • 703de6d618c60df50f26a2520a4e486c2e813325 chore: delete roadmap wf (#10295)
  • 66acebbd9ff7645683604573d8cd17dbcd0c598c ci(helm): bump Trivy version to 0.69.3 for Trivy Helm Chart 0.21.3 (#10310)
  • 2a4dfbf18a71a17de2c22c02afc5742466f6d799 fix(cyclonedx): include CVSS v4 vulnerability ratings (#10313)
  • 77f5cb5abda49844b936322e85829b256cb4599c fix: detected vulnerability fields in azure and mariner detector (#10275)
  • 18e60288ce91657bd3cde92174221189c9098390 ci: add persist-credentials: false to checkout steps (#10306)
  • 2f62c94e971cb1d38246ccea47e525e7c0c04337 ci(helm): bump Trivy version to 0.69.2 for Trivy Helm Chart 0.21.2 (#10270)
  • 95883253cd45085b997451a38ccf8bb199a4e625 chore(deps): bump the common group across 1 directory with 8 updates (#10248)
  • 01295f34876d3d12c3ac85937f65649024c869fe chore(deps): bump go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0 (#10257)
  • a01f109685b2d8d69e46ae0460df732f7617f4bc chore(deps): bump the aws group across 1 directory with 6 updates (#10249)
  • 5fe09eb038359c866bd1346f46d04f203db02ac6 chore(deps): bump github.com/cloudflare/circl from 1.6.1 to 1.6.3 (#10241)
  • 835a4ad29856d580e180d7485d57a9df0a690cdd ci: remove apidiff workflow (#10259)
  • 2a140f1202fb2d5928348e6a1acc78ca5b7d9998 chore(deps): bump github.com/docker/cli from 29.1.4+incompatible to 29.2.1+incompatible in the docker group across 1 directory (#10221)
  • a0f6962c158e5674e51e6fd7ba0318929c333bb9 ci: bump golangci-lint to v2.10 in cache-test-assets (#10243)
  • 350fe3345129f0f341ab80438f66f951b602364a feat(java): add support for proxy configuration from Maven settings.xml (#10187)
  • ccf5a5ad09e482bb1b3f2ef5a0334182ec300ac2 chore(deps): bump the github-actions group across 3 directories with 11 updates (#10242)
  • d0a3f63b84e6a8cd9067e85344097f9179c14b0d feat(python): add pylock.toml support (build(deps-dev): bump @types/node from 22.19.16 to 22.19.17 #10137)
  • 2d92b2799e75c98a80796454741cb6f7ce533666 chore: bump SPDX license IDs and exceptions to v3.28.0 (#10233)
  • 21e657734dd6bb5976bba9534595774695140c24 docs: fix typos and upgrade insecure HTTP links to HTTPS (#10219)
  • a4f79379ba3d9432fea8658979fdc5036e5450ce chore: bump golangci-lint to v2.10.0 (#10223)
  • da94d5f38676885264787fe22f3ed8ab42511b2a feat(misconf): support for azurerm_network_interface_security_group_association (#10215)
  • d758826fdb1b83e8a8abfa9ac47bd9a3d6d6e609 ci: pin Docker Engine to v29 for integration tests (#10232)
  • 7acb5f6f095a11cb9911af5a0bc03aecc7c88f8f feat(go): detect version from ELF symbol table for binaries built with -trimpath (#10197)
  • 5b543884e1331f6241cd36e9683c6aed0519a29a docs: migrate private registry documentation from GCR to GAR (#10208)
  • 1c09181a1095e1428807ec92cddfb323764fe22d chore(deps): bump the common group across 1 directory with 24 updates (#10206)
  • fb0519617bafc77d3d4063df9262fdab6b51c985 chore(deps): update Docker client SDK to v29 (#10202)
  • 3a3d75056b12af12e621919d22d4b326f32c5741 test: update Docker Engine integration tests for Docker API v0.29.0+ compatibility (#10199)
  • 0f0d6dbff4825f7b0ea7744b2229e0157af52972 fix(misconf): initialize custom annotation field if empty (rddepman: bump spinCLI from 3.6.2 to 3.6.3 #10123)
  • 2c1f65bdeec62baef45e93f58cc8e5eca7d84d26 feat(ubuntu): add eol data for 25.10 (#10181)
  • 42216b5e069671dede5c8174451ef523c3d1162a docs: fix incorrect count of Python package managers (#10175)
  • 8662089d1cb6a7eab5148aab5da61f3cd9ca80aa chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 (#10179)
  • 823f3634ae8f41a17be8695ceabcb8ca52f82a63 feat(misconf): resolve Azure resources via resource_id (#10173)
  • 580c4ac6af4eb8ed6584abd34c9eedfe5e90f049 ci(helm): bump Trivy version to 0.69.1 for Trivy Helm Chart 0.21.1 (build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 in /.github/actions/get-token #10155)
  • 68c196f8f3cc2ea610256e1767eaf51262f0f347 refactor: remove unused Insecure field from ServiceOption (rddepman: bump dockerCLI from 29.3.1 to 29.4.0 #10113)
  • 0b735032ef618c5d918e70573e33b8275dbd70e8 refactor: reduce complexity of init in detect.go (#10163)
  • 66bdec4f6af6100b6ab991ca417b0c801cb5cd80 feat(misconf): adapt ARM k8s clusters (Filter SELinux xattrs in manageLinesInFile tests #9696) (build(deps-dev): bump @vue/compiler-sfc from 3.5.31 to 3.5.32 #10125)
  • 82019c37f28fd9594371f2ee1a45e360cade35c6 docs: update version endpoint example in client/server documentation (build(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 #10151)
  • d6e6331abba28fe22f6d8d3bc36f7821601ff8ad feat(vuln): skip third-party packages in common Detect function (build(deps): bump docker/login-action from 4.0.0 to 4.1.0 #10129)
  • 5ffcdfc1af60046bc67a01e217c307046c0e80c8 ci: add composite action for Go setup (build(deps): bump the k8s group across 2 directories with 3 updates #10146)
  • b775a1b63cd7afeda8dec2c1c8b8b6d422418bc6 fix(misconf): apply check aliases when filtering results via .trivyignore (build(deps-dev): bump @electron/asar from 4.1.2 to 4.2.0 #10112)
  • 8d3d4eea6bccb7fb849a467da82c8c93fd06022d docs(terraform): add limitation for data sources and computed resource attributes (build(deps): bump vue from 3.5.31 to 3.5.32 #10128)
  • fa195b4d11d946b0212900b2a153a1abf381e8a2 fix: update PhotonOS feed URL (Fix spell check issue #10122)
  • 4c46d418c58c9a070a87b9d3c88966d40e435329 feat(server): include server version info in JSON output for client/server mode (build(deps): bump actions/setup-go from 6.3.0 to 6.4.0 #10075)
  • 7415661226a361833baa8aea4ead99e4f65b0573 chore(deps): bump to alpine:3.23.3 and go-1.25.6 to fix CVEs (Add i18n-report CLI tool for translation maintenance #10107)
  • fc5f1399c661494d7b39b513647360b796e65940 refactor: unify scanner error limit and compiler limit (Refresh check spelling #10106)
  • 73c64afa94d9f5ee9210b95030d24e9b7ae09032 ci(helm): bump Trivy version to 0.69.0 for Trivy Helm Chart 0.21.0 (build(deps): bump github.com/docker/cli from 29.3.1+incompatible to 29.4.0+incompatible in /src/go/rdctl #10103)
  • 9a3e0a845db68a79f4fd0e71f5cb7d8ca3976bbe fix(java): Disable overwriting exclusions (build(deps-dev): bump @electron/asar from 4.1.0 to 4.1.1 #10088)
  • 65e151fab06b4a07ca283ac66b486985b0795d3f refactor(rust): use txtar format for cargo analyzer test data ([RFE] Make rancher-desktop available on brew #10104)
  • 1a72b326bba9e0959d5f3b63367bb311f064d795 feat(python): add pylock.toml (PEP 751) parser (Refresh check-spelling #9632)
  • cc64eebbd004cc84c73f5dab540ff3a2c5e23e31 chore(deps): bump the aws group across 1 directory with 6 updates (build(deps-dev): bump @yarnpkg/cli from 4.12.0 to 4.13.0 #10068)
  • b9a8d2d80adc47bf9f48e13c2738b099c907518b fix(server): exclude JavaDB and CheckBundle from /version endpoint (New #10100)

Compare between v0.69.3 and v0.70.0

Bump trivy from 0.69.3 to 0.70.0
5abb1b2 
Signed-off-by: Rancher Desktop Dependency Manager <donotuse@rancherdesktop.io>
@jandubois jandubois merged commit db3ef13 into main Apr 17, 2026
20 checks passed
@jandubois jandubois deleted the rddepman/trivy/0.69.3-to-0.70.0 branch April 17, 2026 16:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jandubois jandubois jandubois approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@rancherbot @jandubois