Skip to content

Commit 187a2a7

Browse files
Amulyam24Amulyam24
authored
Bump github.com/aquasecurity/trivy (#1539)
1 parent 7e97f69 commit 187a2a7

File tree

2 files changed

+216
-381
lines changed

2 files changed

+216
-381
lines changed

hack/tools/go.mod

Lines changed: 64 additions & 59 deletions
Original file line numberDiff line numberDiff line change
@@ -5,7 +5,7 @@ go 1.20
55
replace sigs.k8s.io/cluster-api => sigs.k8s.io/cluster-api v1.6.0
66

77
require (
8-
github.com/aquasecurity/trivy v0.47.0
8+
github.com/aquasecurity/trivy v0.48.0
99
github.com/drone/envsubst/v2 v2.0.0-20210730161058-179042472c46
1010
github.com/golangci/golangci-lint v1.55.2
1111
github.com/itchyny/gojq v0.12.14
@@ -38,9 +38,9 @@ require (
3838
github.com/Antonboom/nilnil v0.1.7 // indirect
3939
github.com/Antonboom/testifylint v0.2.3 // indirect
4040
github.com/Azure/azure-sdk-for-go v68.0.0+incompatible // indirect
41-
github.com/Azure/azure-sdk-for-go/sdk/azcore v1.7.1 // indirect
42-
github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.3.1 // indirect
43-
github.com/Azure/azure-sdk-for-go/sdk/internal v1.3.0 // indirect
41+
github.com/Azure/azure-sdk-for-go/sdk/azcore v1.9.0 // indirect
42+
github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.4.0 // indirect
43+
github.com/Azure/azure-sdk-for-go/sdk/internal v1.5.0 // indirect
4444
github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1 // indirect
4545
github.com/Azure/go-autorest v14.2.0+incompatible // indirect
4646
github.com/Azure/go-autorest/autorest v0.11.29 // indirect
@@ -65,9 +65,8 @@ require (
6565
github.com/NYTimes/gziphandler v1.1.1 // indirect
6666
github.com/OneOfOne/xxhash v1.2.8 // indirect
6767
github.com/OpenPeeDeeP/depguard/v2 v2.1.0 // indirect
68-
github.com/ProtonMail/go-crypto v0.0.0-20230717121422-5aa5874ade95 // indirect
68+
github.com/ProtonMail/go-crypto v0.0.0-20230828082145-3c4c8a2d2371 // indirect
6969
github.com/VividCortex/ewma v1.2.0 // indirect
70-
github.com/acomagu/bufpipe v1.0.4 // indirect
7170
github.com/agext/levenshtein v1.2.3 // indirect
7271
github.com/agnivade/levenshtein v1.1.1 // indirect
7372
github.com/alecthomas/chroma v0.10.0 // indirect
@@ -78,22 +77,26 @@ require (
7877
github.com/anchore/go-struct-converter v0.0.0-20221118182256-c68fdcfa2092 // indirect
7978
github.com/apparentlymart/go-cidr v1.1.0 // indirect
8079
github.com/apparentlymart/go-textseg/v13 v13.0.0 // indirect
81-
github.com/aquasecurity/defsec v0.93.1 // indirect
82-
github.com/aquasecurity/go-dep-parser v0.0.0-20231030050624-4548cca9a5c9 // indirect
80+
github.com/apparentlymart/go-textseg/v15 v15.0.0 // indirect
81+
github.com/aquasecurity/defsec v0.93.2-0.20231120220217-6818261529c8 // indirect
82+
github.com/aquasecurity/go-dep-parser v0.0.0-20231120074854-8322cc2242bf // indirect
8383
github.com/aquasecurity/go-gem-version v0.0.0-20201115065557-8eed6fe000ce // indirect
8484
github.com/aquasecurity/go-npm-version v0.0.0-20201110091526-0b796d180798 // indirect
8585
github.com/aquasecurity/go-pep440-version v0.0.0-20210121094942-22b2f8951d46 // indirect
8686
github.com/aquasecurity/go-version v0.0.0-20210121072130-637058cfe492 // indirect
8787
github.com/aquasecurity/loading v0.0.5 // indirect
8888
github.com/aquasecurity/table v1.8.0 // indirect
8989
github.com/aquasecurity/tml v0.6.1 // indirect
90+
github.com/aquasecurity/trivy-aws v0.5.0 // indirect
9091
github.com/aquasecurity/trivy-db v0.0.0-20231005141211-4fc651f7ac8d // indirect
92+
github.com/aquasecurity/trivy-iac v0.7.0 // indirect
9193
github.com/aquasecurity/trivy-java-db v0.0.0-20230209231723-7cddb1406728 // indirect
92-
github.com/aquasecurity/trivy-kubernetes v0.5.9-0.20231019164303-dcdfdc50763f // indirect
94+
github.com/aquasecurity/trivy-kubernetes v0.5.9-0.20231203080602-50a069120091 // indirect
95+
github.com/aquasecurity/trivy-policies v0.6.1-0.20231120231532-f6f2330bf842 // indirect
9396
github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect
9497
github.com/ashanbrown/forbidigo v1.6.0 // indirect
9598
github.com/ashanbrown/makezero v1.1.1 // indirect
96-
github.com/aws/aws-sdk-go v1.46.1 // indirect
99+
github.com/aws/aws-sdk-go v1.48.4 // indirect
97100
github.com/aws/aws-sdk-go-v2 v1.22.1 // indirect
98101
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.4.14 // indirect
99102
github.com/aws/aws-sdk-go-v2/config v1.18.45 // indirect
@@ -104,49 +107,49 @@ require (
104107
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.5.1 // indirect
105108
github.com/aws/aws-sdk-go-v2/internal/ini v1.3.45 // indirect
106109
github.com/aws/aws-sdk-go-v2/internal/v4a v1.1.6 // indirect
107-
github.com/aws/aws-sdk-go-v2/service/accessanalyzer v1.16.0 // indirect
108-
github.com/aws/aws-sdk-go-v2/service/apigateway v1.15.24 // indirect
109-
github.com/aws/aws-sdk-go-v2/service/apigatewayv2 v1.13.11 // indirect
110-
github.com/aws/aws-sdk-go-v2/service/athena v1.30.4 // indirect
111-
github.com/aws/aws-sdk-go-v2/service/cloudfront v1.20.5 // indirect
112-
github.com/aws/aws-sdk-go-v2/service/cloudtrail v1.27.1 // indirect
113-
github.com/aws/aws-sdk-go-v2/service/cloudwatch v1.26.2 // indirect
114-
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.15.20 // indirect
115-
github.com/aws/aws-sdk-go-v2/service/codebuild v1.19.17 // indirect
116-
github.com/aws/aws-sdk-go-v2/service/docdb v1.19.11 // indirect
117-
github.com/aws/aws-sdk-go-v2/service/dynamodb v1.17.7 // indirect
110+
github.com/aws/aws-sdk-go-v2/service/accessanalyzer v1.21.1 // indirect
111+
github.com/aws/aws-sdk-go-v2/service/apigateway v1.18.0 // indirect
112+
github.com/aws/aws-sdk-go-v2/service/apigatewayv2 v1.14.5 // indirect
113+
github.com/aws/aws-sdk-go-v2/service/athena v1.31.6 // indirect
114+
github.com/aws/aws-sdk-go-v2/service/cloudfront v1.28.5 // indirect
115+
github.com/aws/aws-sdk-go-v2/service/cloudtrail v1.29.1 // indirect
116+
github.com/aws/aws-sdk-go-v2/service/cloudwatch v1.27.7 // indirect
117+
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.23.5 // indirect
118+
github.com/aws/aws-sdk-go-v2/service/codebuild v1.22.0 // indirect
119+
github.com/aws/aws-sdk-go-v2/service/docdb v1.23.5 // indirect
120+
github.com/aws/aws-sdk-go-v2/service/dynamodb v1.21.5 // indirect
118121
github.com/aws/aws-sdk-go-v2/service/ebs v1.18.1 // indirect
119-
github.com/aws/aws-sdk-go-v2/service/ec2 v1.98.0 // indirect
122+
github.com/aws/aws-sdk-go-v2/service/ec2 v1.116.0 // indirect
120123
github.com/aws/aws-sdk-go-v2/service/ecr v1.21.0 // indirect
121-
github.com/aws/aws-sdk-go-v2/service/ecs v1.28.1 // indirect
122-
github.com/aws/aws-sdk-go-v2/service/efs v1.20.3 // indirect
123-
github.com/aws/aws-sdk-go-v2/service/eks v1.27.14 // indirect
124-
github.com/aws/aws-sdk-go-v2/service/elasticache v1.26.8 // indirect
125-
github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 v1.19.11 // indirect
126-
github.com/aws/aws-sdk-go-v2/service/elasticsearchservice v1.19.0 // indirect
127-
github.com/aws/aws-sdk-go-v2/service/emr v1.24.4 // indirect
128-
github.com/aws/aws-sdk-go-v2/service/iam v1.21.1 // indirect
124+
github.com/aws/aws-sdk-go-v2/service/ecs v1.30.1 // indirect
125+
github.com/aws/aws-sdk-go-v2/service/efs v1.21.6 // indirect
126+
github.com/aws/aws-sdk-go-v2/service/eks v1.29.5 // indirect
127+
github.com/aws/aws-sdk-go-v2/service/elasticache v1.29.3 // indirect
128+
github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 v1.21.3 // indirect
129+
github.com/aws/aws-sdk-go-v2/service/elasticsearchservice v1.20.6 // indirect
130+
github.com/aws/aws-sdk-go-v2/service/emr v1.28.7 // indirect
131+
github.com/aws/aws-sdk-go-v2/service/iam v1.22.5 // indirect
129132
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.9.15 // indirect
130133
github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.1.38 // indirect
131-
github.com/aws/aws-sdk-go-v2/service/internal/endpoint-discovery v1.7.23 // indirect
134+
github.com/aws/aws-sdk-go-v2/service/internal/endpoint-discovery v1.7.35 // indirect
132135
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.10.1 // indirect
133136
github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.15.6 // indirect
134-
github.com/aws/aws-sdk-go-v2/service/kafka v1.19.4 // indirect
135-
github.com/aws/aws-sdk-go-v2/service/kinesis v1.15.19 // indirect
136-
github.com/aws/aws-sdk-go-v2/service/kms v1.24.1 // indirect
137-
github.com/aws/aws-sdk-go-v2/service/lambda v1.24.6 // indirect
138-
github.com/aws/aws-sdk-go-v2/service/mq v1.15.0 // indirect
139-
github.com/aws/aws-sdk-go-v2/service/neptune v1.20.7 // indirect
140-
github.com/aws/aws-sdk-go-v2/service/rds v1.26.1 // indirect
141-
github.com/aws/aws-sdk-go-v2/service/redshift v1.27.7 // indirect
137+
github.com/aws/aws-sdk-go-v2/service/kafka v1.22.6 // indirect
138+
github.com/aws/aws-sdk-go-v2/service/kinesis v1.18.5 // indirect
139+
github.com/aws/aws-sdk-go-v2/service/kms v1.24.5 // indirect
140+
github.com/aws/aws-sdk-go-v2/service/lambda v1.39.5 // indirect
141+
github.com/aws/aws-sdk-go-v2/service/mq v1.16.5 // indirect
142+
github.com/aws/aws-sdk-go-v2/service/neptune v1.21.5 // indirect
143+
github.com/aws/aws-sdk-go-v2/service/rds v1.54.0 // indirect
144+
github.com/aws/aws-sdk-go-v2/service/redshift v1.29.5 // indirect
142145
github.com/aws/aws-sdk-go-v2/service/s3 v1.40.2 // indirect
143-
github.com/aws/aws-sdk-go-v2/service/secretsmanager v1.16.2 // indirect
144-
github.com/aws/aws-sdk-go-v2/service/sns v1.20.10 // indirect
145-
github.com/aws/aws-sdk-go-v2/service/sqs v1.20.6 // indirect
146+
github.com/aws/aws-sdk-go-v2/service/secretsmanager v1.21.3 // indirect
147+
github.com/aws/aws-sdk-go-v2/service/sns v1.21.5 // indirect
148+
github.com/aws/aws-sdk-go-v2/service/sqs v1.24.5 // indirect
146149
github.com/aws/aws-sdk-go-v2/service/sso v1.15.2 // indirect
147150
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.17.3 // indirect
148151
github.com/aws/aws-sdk-go-v2/service/sts v1.25.0 // indirect
149-
github.com/aws/aws-sdk-go-v2/service/workspaces v1.23.0 // indirect
152+
github.com/aws/aws-sdk-go-v2/service/workspaces v1.31.1 // indirect
150153
github.com/aws/smithy-go v1.16.0 // indirect
151154
github.com/beorn7/perks v1.0.1 // indirect
152155
github.com/bgentry/go-netrc v0.0.0-20140422174119-9fd32a8b3d3d // indirect
@@ -208,14 +211,14 @@ require (
208211
github.com/firefart/nonamedreturns v1.0.4 // indirect
209212
github.com/fsnotify/fsnotify v1.6.0 // indirect
210213
github.com/fzipp/gocyclo v0.6.0 // indirect
211-
github.com/ghodss/yaml v1.0.0 // indirect
212214
github.com/ghostiam/protogetter v0.2.3 // indirect
213215
github.com/go-critic/go-critic v0.9.0 // indirect
214216
github.com/go-errors/errors v1.4.2 // indirect
215217
github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376 // indirect
216-
github.com/go-git/go-billy/v5 v5.4.1 // indirect
217-
github.com/go-git/go-git/v5 v5.8.1 // indirect
218-
github.com/go-gorp/gorp/v3 v3.0.5 // indirect
218+
github.com/go-git/go-billy/v5 v5.5.0 // indirect
219+
github.com/go-git/go-git/v5 v5.10.1 // indirect
220+
github.com/go-gorp/gorp/v3 v3.1.0 // indirect
221+
github.com/go-ini/ini v1.67.0 // indirect
219222
github.com/go-logr/logr v1.3.0 // indirect
220223
github.com/go-logr/stdr v1.2.2 // indirect
221224
github.com/go-logr/zapr v1.2.4 // indirect
@@ -259,7 +262,7 @@ require (
259262
github.com/google/btree v1.1.2 // indirect
260263
github.com/google/gnostic-models v0.6.8 // indirect
261264
github.com/google/go-cmp v0.6.0 // indirect
262-
github.com/google/go-containerregistry v0.16.1 // indirect
265+
github.com/google/go-containerregistry v0.17.0 // indirect
263266
github.com/google/gofuzz v1.2.0 // indirect
264267
github.com/google/licenseclassifier/v2 v2.0.0 // indirect
265268
github.com/google/pprof v0.0.0-20221118152302-e6195bd50e26 // indirect
@@ -286,7 +289,7 @@ require (
286289
github.com/hashicorp/go-version v1.6.0 // indirect
287290
github.com/hashicorp/golang-lru/v2 v2.0.6 // indirect
288291
github.com/hashicorp/hcl v1.0.0 // indirect
289-
github.com/hashicorp/hcl/v2 v2.17.0 // indirect
292+
github.com/hashicorp/hcl/v2 v2.18.1 // indirect
290293
github.com/hexops/gotextdiff v1.0.3 // indirect
291294
github.com/huandu/xstrings v1.4.0 // indirect
292295
github.com/imdario/mergo v0.3.15 // indirect
@@ -324,7 +327,7 @@ require (
324327
github.com/leonklingele/grouper v1.1.1 // indirect
325328
github.com/liamg/iamgo v0.0.9 // indirect
326329
github.com/liamg/jfather v0.0.7 // indirect
327-
github.com/liamg/memoryfs v1.4.3 // indirect
330+
github.com/liamg/memoryfs v1.6.0 // indirect
328331
github.com/lib/pq v1.10.9 // indirect
329332
github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
330333
github.com/lufeee/execinquery v1.2.1 // indirect
@@ -344,6 +347,7 @@ require (
344347
github.com/mattn/go-colorable v0.1.13 // indirect
345348
github.com/mattn/go-isatty v0.0.20 // indirect
346349
github.com/mattn/go-runewidth v0.0.15 // indirect
350+
github.com/mattn/go-shellwords v1.0.12 // indirect
347351
github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
348352
github.com/mbilski/exhaustivestruct v1.2.0 // indirect
349353
github.com/mgechev/revive v1.3.4 // indirect
@@ -374,7 +378,7 @@ require (
374378
github.com/nunnatsa/ginkgolinter v0.14.1 // indirect
375379
github.com/oklog/ulid v1.3.1 // indirect
376380
github.com/olekukonko/tablewriter v0.0.5 // indirect
377-
github.com/open-policy-agent/opa v0.45.0 // indirect
381+
github.com/open-policy-agent/opa v0.57.0 // indirect
378382
github.com/opencontainers/go-digest v1.0.0 // indirect
379383
github.com/opencontainers/image-spec v1.1.0-rc5 // indirect
380384
github.com/opencontainers/runc v1.1.5 // indirect
@@ -383,7 +387,7 @@ require (
383387
github.com/opentracing/opentracing-go v1.2.0 // indirect
384388
github.com/openvex/go-vex v0.2.5 // indirect
385389
github.com/owenrumney/go-sarif/v2 v2.3.0 // indirect
386-
github.com/owenrumney/squealer v1.1.1 // indirect
390+
github.com/owenrumney/squealer v1.2.1 // indirect
387391
github.com/package-url/packageurl-go v0.1.2 // indirect
388392
github.com/pelletier/go-toml/v2 v2.1.0 // indirect
389393
github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
@@ -403,7 +407,7 @@ require (
403407
github.com/rcrowley/go-metrics v0.0.0-20201227073835-cf1acfcdf475 // indirect
404408
github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect
405409
github.com/rivo/uniseg v0.4.4 // indirect
406-
github.com/rubenv/sql-migrate v1.3.1 // indirect
410+
github.com/rubenv/sql-migrate v1.5.2 // indirect
407411
github.com/russross/blackfriday/v2 v2.1.0 // indirect
408412
github.com/ryancurrah/gomodguard v1.3.0 // indirect
409413
github.com/ryanrolds/sqlclosecheck v0.5.1 // indirect
@@ -425,11 +429,11 @@ require (
425429
github.com/sivchari/containedctx v1.0.3 // indirect
426430
github.com/sivchari/nosnakecase v1.7.0 // indirect
427431
github.com/sivchari/tenv v1.7.1 // indirect
428-
github.com/skeema/knownhosts v1.2.0 // indirect
432+
github.com/skeema/knownhosts v1.2.1 // indirect
429433
github.com/sonatard/noctx v0.0.2 // indirect
430434
github.com/sourcegraph/conc v0.3.0 // indirect
431435
github.com/sourcegraph/go-diff v0.7.0 // indirect
432-
github.com/spdx/tools-golang v0.5.0 // indirect
436+
github.com/spdx/tools-golang v0.5.4-0.20231108154018-0c0f394b5e1a // indirect
433437
github.com/spf13/afero v1.10.0 // indirect
434438
github.com/spf13/cast v1.5.1 // indirect
435439
github.com/spf13/cobra v1.8.0 // indirect
@@ -462,7 +466,7 @@ require (
462466
github.com/xen0n/gosmopolitan v1.2.2 // indirect
463467
github.com/xlab/treeprint v1.2.0 // indirect
464468
github.com/yagipy/maintidx v1.0.0 // indirect
465-
github.com/yashtewari/glob-intersection v0.1.0 // indirect
469+
github.com/yashtewari/glob-intersection v0.2.0 // indirect
466470
github.com/yeya24/promlinter v0.2.0 // indirect
467471
github.com/ykadowak/zerologlint v0.1.3 // indirect
468472
github.com/zclconf/go-cty v1.13.0 // indirect
@@ -474,6 +478,7 @@ require (
474478
go.opencensus.io v0.24.0 // indirect
475479
go.opentelemetry.io/otel v1.20.0 // indirect
476480
go.opentelemetry.io/otel/metric v1.20.0 // indirect
481+
go.opentelemetry.io/otel/sdk v1.20.0 // indirect
477482
go.opentelemetry.io/otel/trace v1.20.0 // indirect
478483
go.starlark.net v0.0.0-20230525235612-a134d8f9ddca // indirect
479484
go.tmz.dev/musttag v0.7.2 // indirect
@@ -482,7 +487,7 @@ require (
482487
golang.org/x/crypto v0.15.0 // indirect
483488
golang.org/x/exp v0.0.0-20231006140011-7918f672742d // indirect
484489
golang.org/x/exp/typeparams v0.0.0-20230307190834-24139beb5833 // indirect
485-
golang.org/x/mod v0.13.0 // indirect
490+
golang.org/x/mod v0.14.0 // indirect
486491
golang.org/x/net v0.18.0 // indirect
487492
golang.org/x/oauth2 v0.14.0 // indirect
488493
golang.org/x/sync v0.5.0 // indirect
@@ -506,7 +511,7 @@ require (
506511
gopkg.in/warnings.v0 v0.1.2 // indirect
507512
gopkg.in/yaml.v2 v2.4.0 // indirect
508513
gopkg.in/yaml.v3 v3.0.1 // indirect
509-
helm.sh/helm/v3 v3.12.3 // indirect
514+
helm.sh/helm/v3 v3.13.0 // indirect
510515
honnef.co/go/tools v0.4.6 // indirect
511516
k8s.io/api v0.28.4 // indirect
512517
k8s.io/apiextensions-apiserver v0.28.4 // indirect
@@ -516,7 +521,7 @@ require (
516521
k8s.io/client-go v0.28.4 // indirect
517522
k8s.io/component-base v0.28.4 // indirect
518523
k8s.io/gengo v0.0.0-20220902162205-c0856e24416d // indirect
519-
k8s.io/klog/v2 v2.100.1 // indirect
524+
k8s.io/klog/v2 v2.110.1 // indirect
520525
k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9 // indirect
521526
k8s.io/kubectl v0.28.4 // indirect
522527
k8s.io/utils v0.0.0-20230505201702-9f6742963106 // indirect

0 commit comments

Comments
 (0)