Skip to content

Commit 52e9fa4

Browse files
craig-osterhoutcraig-osterhout
committed
scout: update scout cli release notes
Signed-off-by: Craig <[email protected]>
1 parent fc52d9e commit 52e9fa4

File tree

1 file changed

+77
-0
lines changed
  • content/manuals/scout/release-notes

1 file changed

+77
-0
lines changed

content/manuals/scout/release-notes/cli.md

Lines changed: 77 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -9,6 +9,83 @@ This page contains information about the new features, improvements, known
99
issues, and bug fixes in the Docker Scout [CLI plugin](https://github.com/docker/scout-cli/)
1010
and the `docker/scout-action` [GitHub Action](https://github.com/docker/scout-action).
1111

12+
## 1.18.3
13+
14+
{{< release-date date="2025-08-13" >}}
15+
16+
### New
17+
18+
- Add `docker scout vex get` command to retrieve a merged VEX document from all VEX attestations.
19+
20+
### Bug fixes and enhancements
21+
22+
- Minor fixes for Docker Hardened Images (DHI).
23+
24+
## 1.18.2
25+
26+
{{< release-date date="2025-07-21" >}}
27+
28+
### New
29+
30+
- Add `--skip-tlog` flag to `docker scout attest get` to skip signature verification against the transparency log.
31+
32+
### Enhancements
33+
34+
- Add predicate type human-readable names for DHI FIPS and STIG attestations.
35+
36+
### Bug fixes
37+
38+
- Do not filter CVEs that are marked with a VEX `under_investigation` statement.
39+
- Minor fixes for Docker Hardened Images (DHI).
40+
41+
## 1.18.1
42+
43+
{{< release-date date="2025-05-26" >}}
44+
45+
### Bug fixes
46+
47+
- Fix issues with `docker scout attest list` and `docker scout attest get` for local images.
48+
49+
## 1.18.0
50+
51+
{{< release-date date="2025-05-13" >}}
52+
53+
### New
54+
55+
- Add `docker scout attest list` and `docker scout attest get` commands to list attestations.
56+
- Add support for Docker Hardened Images (DHI) VEX documents.
57+
58+
## 1.16.1
59+
60+
{{< release-date date="2024-12-13" >}}
61+
62+
### Bug fixes
63+
64+
- Fix in-toto subject digest for the `docker scout attestation add` command.
65+
66+
## 1.16.0
67+
68+
{{< release-date date="2024-12-12" >}}
69+
70+
### New
71+
72+
- Add secret scanning to the `docker scout sbom` command.
73+
- Add support for attestations for images from Tanzu Application Catalog.
74+
75+
### Enhancements
76+
77+
- Normalize licenses using the SPDX license list.
78+
- Make licenses unique.
79+
- Print platform in markdown output.
80+
- Keep original pattern to find nested matches.
81+
- Updates to make SPDX output spec-compliant.
82+
- Update Go, crypto module, and Alpine dependencies.
83+
84+
### Bug fixes
85+
86+
- Fix behavior with multiple images in the `docker scout attest` command.
87+
- Check directory existence before creating temporary file.
88+
1289
## 1.15.0
1390

1491
{{< release-date date="2024-10-31" >}}

0 commit comments

Comments
 (0)