v0.46.0 #5377
aqua-bot
announced in
Announcements
v0.46.0
#5377
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
🚀 What's new? 🚀
⎈ KBOM Vulnerability Scanning 🛡️
Trivy now supports scanning for vulnerabilities in the Kubernetes control plane and node components. Instead of using the Kubernetes cluster version, it leverages KBOM to identify individual component versions like
kubelet
for more accurate detection.The example generates a KBOM and scans it with
trivy sbom
command. In the future we will add direct cluster scanning throughtrivy k8s
.This feature is powered by machine-readable Kubernetes security advisories in the OSV format maintained by Aqua Security. Currently supporting only upstream vulnerability data, with plans to cover cloud-provider Kubernetes distributions like EKS and GKE.
🔧 NuGet License Support 📜
Trivy v0.46.0 introduced license information retrieval for .NET projects by supporting *.nuspec files from the global packages directory. The
packages.config
andpackages.lock.json
files previously lacked license data. Now, with this update, Trivy can access license info via the default path or theNUGET_PACKAGES
environment variable.🔧 Improvements for Terraform scanning ⎋
🦾 Misconfiguration scanning updates 🔖
The following improvements have been made to IaC misconfiguration checks:
👷♂️ Notable Fixes 🛠️
cdktf
#5080Beta Was this translation helpful? Give feedback.
All reactions