Changelog
- [5cd03f] chore(deps): bump github.com/go-git/go-git/v5 (#2549)
- [6034b6] feat(scanner): add pylock.toml detection (PEP 751) (#2548)
- [0244ae] deps(dict): bump go-cve-dictionary, go-cti, gost (#2547)
- [c5262f] chore(deps): bump github.com/aquasecurity/trivy (#2521)
- [a9079d] chore(deps): bump the all group across 1 directory with 2 updates (#2546)
- [1f896e] chore(deps): bump the others group across 1 directory with 6 updates (#2540)
- [230527] fix(config): refresh openSUSE Leap EOL entries (add 16.0, extend 15.6) (#2543)
- [6372c4] fix(detector/library): regenerate PURL after JAR SHA1 canonicalization (#2533)
- [a97523] feat(detector/vuls2): thread RedHat CVE Mitigation into VulnInfo (#2532)
- [18abe6] test(scanner): source lockfiles from vulsio/integration (#2531)
- [52eff3] chore(deps): bump the go_modules group across 1 directory with 2 updates (#2527)
- [f235b9] chore(deps): bump the all group across 1 directory with 5 updates (#2526)
- [0e039b] chore(deps): bump the all group across 1 directory with 2 updates (#2525)
- [c08f42] chore(deps): bump the others group across 1 directory with 5 updates (#2523)
- [bb3cad] feat(config/os): add ubuntu 26.04 (#2524)
- [71ddc5] chore(deps): bump the go_modules group across 1 directory with 5 updates (#2520)
- [4c71b0] feat!(detector): replace go-exploitdb with vuls2 (#2517)
- [9991a0] feat(scanner/windows): update kb supersession (#2518)
- [b780bb] feat(detector): add DataSources filter to enrich function (#2513)
- [8383d4] feat!(detector): relace go-msfdb with vuls2 (#2512)
- [234664] feat!(detector): replace go-kev with vuls2 (#2509)
- [afd0c4] fix(detector): enrich all detected CVEs, not only vuls2-detected ones (#2511)
- [fadbba] feat!(detector): replace gost.FillCVEsWithRedHat with vuls2 (#2505)
- [d9876d] fix(detector/vuls2): skip advisory fallback for ignored vulns (#2508)
- [511915] refactor: remove GraphQL-based GitHub detection, add Dependency.PURL (#2502)
- [c7e346] refactor(scanner/windows): detect version by build number only (#2503)
- [ff914c] chore(deps): bump actions/setup-go in the all group across 1 directory (#2497)
- [01e3a2] chore(deps): bump the others group across 1 directory with 12 updates (#2498)
- [b67629] chore(deps): bump the go_modules group across 1 directory with 2 updates (#2495)
- [44e160] fix(contrib/trivy): dedup package names and add dup warnings (#2491)
- [652294] deps: remove fanal framework, call Trivy parsers directly (#2476)
- [b9ac2f] chore!(contrib/docker): temporarily remove fvuls docker publish (#2483)
- [35a36c] fix(subcmds/report): remove trivy's tmp directory (#2482)
- [b610fa] deps: remove trivy/pkg/cache import, replace with local helper (#2478)
- [d2acdc] chore(deps): bump google.golang.org/grpc (#2477)
- [f9865d] chore(ci): update GitHub Actions workflows (#2474)
- [95a1e3] fix(ci/diet): fix shell heredoc in diet-check.yml (#2471)
- [622a72] chore(ci): add Diet PR metrics workflow (#2469)
- [3fbd29] fix(models): include CPE vulns in total, set "unknown" patch status (#2460)
- [16a908] fix(detector/vuls2): backport ubuntu fix (#2458)
- [adbc48] fix(reporter/sbom): add WindowsKB to SBOM output (#2454)
- [173aac] feat!(detector): detect debian with vuls2 (#2448)