Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump trivy to 0.26.0 #4364

Merged
merged 2 commits into from
Oct 11, 2024
Merged

Bump trivy to 0.26.0 #4364

merged 2 commits into from
Oct 11, 2024

Conversation

asteel-gsa
Copy link
Contributor

@asteel-gsa asteel-gsa commented Oct 8, 2024
edited
Loading

Closes #4362 #4366

Should hopefully resolve ratelimiting issues. See:
aquasecurity/trivy-action#387
aquasecurity/trivy#7592

@asteel-gsa asteel-gsa requested a review from a team October 8, 2024 12:33
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Oct 8, 2024
edited
Loading

Terraform plan for meta

No changes. Your infrastructure matches the configuration. 
No changes. Your infrastructure matches the configuration.

Terraform has compared your real infrastructure against your configuration
and found no differences, so no changes are needed.

Warning: Argument is deprecated

  with module.s3-backups.cloudfoundry_service_instance.bucket,
  on /tmp/terraform-data-dir/modules/s3-backups/s3/main.tf line 14, in resource "cloudfoundry_service_instance" "bucket":
  14:   recursive_delete = var.recursive_delete

Since CF API v3, recursive delete is always done on the cloudcontroller side.
This will be removed in future releases

✅ Plan applied in Deploy to Development and Management Environment #831

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Oct 8, 2024
edited
Loading

Terraform plan for dev

Plan: 1 to add, 0 to change, 1 to destroy. 
Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
-/+ destroy and then create replacement

Terraform will perform the following actions:

  # module.dev.module.cors.null_resource.cors_header must be replaced
-/+ resource "null_resource" "cors_header" {
!~      id       = "*******************" -> (known after apply)
!~      triggers = { # forces replacement
!~          "always_run" = "2024-10-10T19:46:55Z" -> (known after apply)
        }
    }

Plan: 1 to add, 0 to change, 1 to destroy.

Warning: Argument is deprecated

  with module.dev-backups-bucket.cloudfoundry_service_instance.bucket,
  on /tmp/terraform-data-dir/modules/dev-backups-bucket/s3/main.tf line 14, in resource "cloudfoundry_service_instance" "bucket":
  14:   recursive_delete = var.recursive_delete

Since CF API v3, recursive delete is always done on the cloudcontroller side.
This will be removed in future releases

(and 6 more similar warnings elsewhere)

✅ Plan applied in Deploy to Development and Management Environment #831

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Oct 8, 2024
edited
Loading

☂️ Python Coverage

current status: ✅

Overall Coverage

Lines Covered Coverage Threshold Status
18661 17005 91% 0% 🟢

New Files

No new covered files...

Modified Files

No covered modified files...

updated for commit: 0247786 by action🐍

@asteel-gsa asteel-gsa force-pushed the trivy-version-upgrade branch from 879dccc to 7e4759b Compare October 9, 2024 16:32
@asteel-gsa asteel-gsa changed the title Bump trivy to 0.25.0 Bump trivy to 0.26.0 Oct 9, 2024
@asteel-gsa asteel-gsa force-pushed the trivy-version-upgrade branch from 7e4759b to 0247786 Compare October 11, 2024 13:22
@asteel-gsa asteel-gsa added this pull request to the merge queue Oct 11, 2024
Merged via the queue into main with commit 6a910ec Oct 11, 2024
15 checks passed
@asteel-gsa asteel-gsa deleted the trivy-version-upgrade branch October 11, 2024 14:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@phildominguez-gsa phildominguez-gsa phildominguez-gsa approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@asteel-gsa @phildominguez-gsa