Releases: Kong/public-shared-actions
Releases · Kong/public-shared-actions
v2.8.0
What's Changed
- chore(deps): bump github/codeql-action/upload-sarif from v2 to v3 by @Water-Melon in #169
- github-actions(deps): bump anchore/sbom-action from 0.17.2 to 0.17.8 in /security-actions/sca by @dependabot in #194
- github-actions(deps): bump anchore/sbom-action from 0.17.2 to 0.17.8 in /security-actions/scan-docker-image by @dependabot in #191
- chore(docs): update semgrep readme by @saisatishkarra in #195
- feat(security-actions/scan-docker-image): support
trivy_db_cache
as alternate by @dndx in #184
New Contributors
- @Water-Melon made their first contribution in #169
- @dndx made their first contribution in #184
Full Changelog: v2...v2.8.0
v2.7.3
v2.7.2
v2.7.1
v2.7.0
What's Changed
- feat: slack workflow conclusion notifications by @adamdehaven in #160
Full Changelog: v2...v2.7.0
v2.6.0
What's Changed
- feat(lua-lint): Add
inputs.print_results
to lua-lint action. by @monaka in #149 - github-actions(deps): bump anchore/sbom-action from 0.17.1 to 0.17.2 in /security-actions/sca by @dependabot in #146
- github-actions(deps): bump anchore/scan-action from 4.1.1 to 4.1.2 in /security-actions/sca by @dependabot in #145
- github-actions(deps): bump anchore/scan-action from 4.1.1 to 4.1.2 in /security-actions/scan-docker-image by @dependabot in #143
- github-actions(deps): bump anchore/sbom-action from 0.17.1 to 0.17.2 in /security-actions/scan-docker-image by @dependabot in #144
- github-actions(deps): bump docker/login-action from 3.1.0 to 3.3.0 in /security-actions/sign-docker-image by @dependabot in #133
- feat(SEC-1211): update semgrep version by @pankajmouriyakong in #154
- feat: input to skip Trivy scan by @pankajmouriyakong in #156
New Contributors
Full Changelog: v2.5.1...v2.6.0
v2.5.1
What's Changed
- Defaulting to use grype cdn and skip cache by default by @saisatishkarra in #152
Full Changelog: v2.5.0...v2.5.1
v2.5.0
What's Changed
- fix: omitted severity flags in docker image scan action by @pankajmouriyakong in #142
- SEC-1176 - Option to skip Grype DB caching and tradeoff to use Grype CDN by @pankajmouriyakong in #148
New Contributors
- @pankajmouriyakong made their first contribution in #142
Full Changelog: v2...v2.5.0
v2.4.1
What's Changed
- save grype db cache on updates to avoid using stale cache db by @saisatishkarra in #147
- fix grype cache save and avoid marking cache as readonly by @saisatishkarra in 7ef70a7
- use temporary cache key and restore keys for grype cache by @saisatishkarra in 9570979
- Avoid same cache key overwrite issues when saving cache on multiple invocations by @saisatishkarra in 20348b7
- fix grype db logging condition by @saisatishkarra in 5c685ec
Full Changelog: v2...v2.4.1
v2.4.0
What's Changed
- github-actions(deps): bump anchore/scan-action from 3.6.4 to 4.1.1 in /security-actions/sca by @dependabot in #138
- github-actions(deps): bump anchore/scan-action from 3.6.4 to 4.1.1 in /security-actions/scan-docker-image by @dependabot in #136
- github-actions(deps): bump anchore/sbom-action from 0.16.0 to 0.17.1 in /security-actions/sca by @dependabot in #139
- github-actions(deps): bump anchore/sbom-action from 0.16.0 to 0.17.1 in /security-actions/scan-docker-image by @dependabot in #137
- github-actions(deps): bump docker/login-action from 3.1.0 to 3.2.0 in /security-actions/sign-docker-image by @dependabot in #124
- github-actions(deps): bump sigstore/cosign-installer from 3.5.0 to 3.6.0 in /security-actions/sign-docker-image by @dependabot in #135
- Run CVE analysis when DB cache or upstream cdn is live by @saisatishkarra in #141
Full Changelog: v2.3.0...v2.4.0