Upgrade trivy to v0.53.0 (#369)

* Upgrade trivy to v0.53.0 * update tests --------- Co-authored-by: Simar <[email protected]>
aquasecurity · Jul 9, 2024 · 6e7b7d1 · 6e7b7d1
1 parent 7c2007b
commit 6e7b7d1
Show file tree

Hide file tree

Showing 9 changed files with 67 additions and 184 deletions.
diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml
@@ -6,7 +6,7 @@ on:
   workflow_dispatch:
 
 env:
-  TRIVY_VERSION: 0.52.2
+  TRIVY_VERSION: 0.53.0
   BATS_LIB_PATH: '/usr/lib/'
 
 jobs:

diff --git a/Dockerfile b/Dockerfile
@@ -1,4 +1,4 @@
-FROM ghcr.io/aquasecurity/trivy:0.52.2
+FROM ghcr.io/aquasecurity/trivy:0.53.0
 COPY entrypoint.sh /
 RUN apk --no-cache add bash curl npm
 RUN chmod +x /entrypoint.sh

diff --git a/Makefile b/Makefile
@@ -1,4 +1,4 @@
 .PHONY: test
 
 test:
-	BATS_LIB_PATH=/usr/local/lib/ bats -r .
+	BATS_LIB_PATH=/usr/local/lib/ bats --recurisve --timing --verbose-run .
diff --git a/test/data/config-sarif-report/report.sarif b/test/data/config-sarif-report/report.sarif
@@ -205,7 +205,7 @@
                 "text": "S3 buckets should each define an aws_s3_bucket_public_access_block"
               },
               "fullDescription": {
-                "text": "The \u0026#34;block public access\u0026#34; settings in S3 override individual policies that apply to a given bucket, meaning that all public access can be controlled in one central types for that bucket. It is therefore good practice to define these settings for each bucket in order to clearly define the public access that can be allowed for it."
+                "text": "The &#34;block public access&#34; settings in S3 override individual policies that apply to a given bucket, meaning that all public access can be controlled in one central types for that bucket. It is therefore good practice to define these settings for each bucket in order to clearly define the public access that can be allowed for it."
               },
               "defaultConfiguration": {
                 "level": "note"
@@ -252,8 +252,7 @@
                 ]
               }
             }
-          ],
-          "version": "0.50.0"
+          ]
         }
       },
       "results": [
@@ -501,12 +500,7 @@
           ]
         }
       ],
-      "columnKind": "utf16CodeUnits",
-      "originalUriBaseIds": {
-        "ROOTPATH": {
-          "uri": "file://D:\\projects\\trivy-action\\test\\data\\config-sarif-report/"
-        }
-      }
+      "columnKind": "utf16CodeUnits"
     }
   ]
-}
+}
diff --git a/test/data/config-scan/report.json b/test/data/config-scan/report.json
@@ -1,6 +1,5 @@
 {
   "SchemaVersion": 2,
-  "CreatedAt": "2024-04-12T16:53:35.5567541+03:00",
   "ArtifactName": "test/data/config-scan",
   "ArtifactType": "filesystem",
   "Metadata": {