chore: release v2.3.3 (#2509)

This PR adds the change log and updates the snapshots and cassettes in
preparation for v2.3.3 release.

Author: Ly-Joey

CHANGELOG.md

@@ -1,3 +1,17 @@
+# v2.3.3
+
+### Features:
+
+- [Feature #2458](https://github.com/google/osv-scanner/pull/2458) Add `--exclude` flag to skip paths during scanning.
+- [Feature #2477](https://github.com/google/osv-scanner/pull/2477) Add `pylock` extractor.
+- [Feature #2475](https://github.com/google/osv-scanner/pull/2475) Add base image info to container scanning output header (in table, markdown and vertical formats).
+
+### Misc:
+
+- Update Go version to 1.25.7.
+- Update osv-scalibr from v0.4.1 to v0.4.2. [Release note](https://github.com/google/osv-scalibr/releases/tag/v0.4.2).
+- Refactor to better align with osv-scalibr plugins and inventory data structure.
+
 # v2.3.2
 
 This release includes performance improvements for local scanning, reducing memory usage and avoiding unnecessary advisory loading. It also fixes issues with MCP's get_vulnerability_details tool, git queries in `osv-scanner.json`, and ignore entry tracking, along with documentation updates.

cmd/osv-scanner/__snapshots__/main_test.snap

@@ -46,7 +46,7 @@ OPTIONS:
 ---
 
 [Test_run/version - 1]
-osv-scanner version: 2.3.2
+osv-scanner version: 2.3.3
 osv-scalibr version: 0.4.2
 commit: n/a
 built at: n/a

cmd/osv-scanner/scan/image/__snapshots__/command_test.snap

@@ -145,7 +145,7 @@ interactions:
               "vulns": [
                 {
                   "id": "ALPINE-CVE-2024-13176",
-                  "modified": "2025-12-03T22:55:07.817006Z"
+                  "modified": "2026-02-08T14:17:02.498117Z"
                 },
                 {
                   "id": "ALPINE-CVE-2024-9143",
@@ -157,7 +157,7 @@ interactions:
               "vulns": [
                 {
                   "id": "ALPINE-CVE-2024-13176",
-                  "modified": "2025-12-03T22:55:07.817006Z"
+                  "modified": "2026-02-08T14:17:02.498117Z"
                 },
                 {
                   "id": "ALPINE-CVE-2024-9143",

cmd/osv-scanner/scan/image/testdata/cassettes/TestCommand_Docker.yaml

@@ -354,7 +354,7 @@ interactions:
                 },
                 {
                   "id": "ALPINE-CVE-2024-13176",
-                  "modified": "2025-12-03T22:55:07.817006Z"
+                  "modified": "2026-02-08T14:17:02.498117Z"
                 },
                 {
                   "id": "ALPINE-CVE-2024-2511",
@@ -514,7 +514,7 @@ interactions:
                 },
                 {
                   "id": "ALPINE-CVE-2024-13176",
-                  "modified": "2025-12-03T22:55:07.817006Z"
+                  "modified": "2026-02-08T14:17:02.498117Z"
                 },
                 {
                   "id": "ALPINE-CVE-2024-2511",