Renovate: Update module github.com/aquasecurity/trivy to v0.55.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/aquasecurity/trivy	v0.54.1 -> v0.55.0

---

Release Notes

aquasecurity/trivy (github.com/aquasecurity/trivy)

v0.55.0

Compare Source

Changelog

• 7a1e8b8 release: v0.55.0 [main] (#​7271)
• 2d80769 feat(go): use toolchain as stdlib version for go.mod files (#​7163)
• f80183c fix(license): add license handling to JUnit template (#​7409)
• 2d97700 feat(java): add test scope support for pom.xml files (#​7414)
• 870523d chore(deps): Bump trivy-checks and pin OPA (#​7427)
• da4ebfa fix(helm): explicitly define kind and apiVersion of volumeClaimTemplate element (#​7362)
• af1d257 feat(sbom): set User-Agent header on requests to Rekor (#​7396)
• 1a6295c test: add integration plugin tests (#​7299)
• fd9ed3a fix(nodejs): check all importers to detect dev deps from pnpm-lock.yaml file (#​7387)
• c929290 fix: logger initialization before flags parsing (#​7372)
• feaef96 fix(aws): handle ECR repositories in different regions (#​6217)
• 0cac3ac fix(misconf): fix infer type for null value (#​7424)
• bf64003 fix(secret): use .eyJ keyword for JWT secret (#​7410)
• 3a5d091 fix(misconf): do not recreate filesystem map (#​7416)
• 39c8024 chore(deps): Bump trivy-checks (#​7417)
• a5aa63e fix(misconf): do not register Rego libs in checks registry (#​7420)
• c96dcdd fix(sbom): use NOASSERTION for licenses fields in SPDX formats (#​7403)
• 7aea79d feat(report): export modified findings in JSON (#​7383)
• 4c6e8ca feat(server): Make Trivy Server Multiplexer Exported (#​7389)
• 84118d0 chore: update CODEOWNERS (#​7398)
• 391448a fix(secret): use only line with secret for long secret lines (#​7412)
• 344dafd chore: fix allow rule of ignoring test files to make it case insensitive (#​7415)
• 98e136e feat(misconf): port and protocol support for EC2 networks (#​7146)
• 9d7264a fix(misconf): do not filter Terraform plan JSON by name (#​7406)
• 44e4686 feat(misconf): support for ignore by nested attributes (#​7205)
• 0799770 fix(misconf): use module to log when metadata retrieval fails (#​7405)
• dd9733e fix(report): escape Message field in asff.tpl template (#​7401)
• be86126 feat(misconf): Add support for using spec from on-disk bundle (#​7179)
• 45a9627 docs: add pkg flags to config file page (#​7370)
• e9b43f8 feat(python): use minimum version for pip packages (#​7348)
• 2a6c7ab fix(misconf): support deprecating for Go checks (#​7377)
• b65b32d fix(misconf): init frameworks before updating them (#​7376)
• 9ef05fc feat(misconf): ignore duplicate checks (#​7317)
• bfdf5cf refactor(misconf): use slog (#​7295)
• 6fe6727 chore(deps): bump trivy-checks (#​7350)
• 24a4563 feat(server): add internal --path-prefix flag for client/server mode (#​7321)
• 3f0e7eb chore(deps): bump the aws group across 1 directory with 7 updates (#​7358)
• 05a8297 fix: safely check if the directory exists (#​7353)
• db2c955 feat(misconf): variable support for Terraform Plan (#​7228)
• efdbd8f feat(misconf): scanning support for YAML and JSON (#​7311)
• c5c62d5 fix(misconf): wrap Azure PortRange in iac types (#​7357)
• 0c6687d refactor(misconf): highlight only affected rows (#​7310)
• aadb090 fix(misconf): change default TLS values for the Azure storage account (#​7345)
• 0047dbf chore(deps): bump the common group with 9 updates (#​7333)
• ee339b5 docs(misconf): Update callsites to use correct naming (#​7335)
• 08cc14b docs: update air-gapped docs (#​7160)
• 59c1541 refactor: replace ftypes.Gradle with packageurl.TypeGradle (#​7323)
• 2b6d8d9 perf(misconf): optimize work with context (#​6968)
• 65d991c docs: update links to packaging.python.org (#​7318)
• 7278abd docs: update client/server docs for misconf and license scanning (#​7277)
• ac3eb9d chore(deps): bump the common group across 1 directory with 7 updates (#​7305)
• fe92072 feat(misconf): iterator argument support for dynamic blocks (#​7236)
• f0ed5e4 fix(misconf): do not set default value for default_cache_behavior (#​7234)
• a817fae feat(misconf): support for policy and bucket grants (#​7284)
• a4180bd fix(misconf): load only submodule if it is specified in source (#​7112)
• c766831 perf(misconf): use json.Valid to check validity of JSON (#​7308)
• 13789b7 refactor(misconf): remove unused universal scanner (#​7293)
• 85dadf5 perf(misconf): do not convert contents of a YAML file to string (#​7292)
• bb2e26a fix(terraform): add aws_region name to presets (#​7184)
• 555ac8c docs: add auto-generated config (#​7261)
• fd8348d feat(vuln): Add --detection-priority flag for accuracy tuning (#​7288)
• e95152f refactor(misconf): remove file filtering from parsers (#​7289)
• 2a0e529 fix(flag): incorrect behavior for deprected flag --clear-cache (#​7281)
• 49d5270 fix(java): Return error when trying to find a remote pom to avoid segfault (#​7275)
• b3ee6da fix(plugin): do not call GitHub content API for releases and tags (#​7274)
• 35c60f0 feat(vm): support the Ext2/Ext3 filesystems (#​6983)
• 7024572 feat(cli)!: delete deprecated SBOM flags (#​7266)
• 45b3f34 feat(vm): Support direct filesystem (#​7058)

---

Configuration

📅 Schedule: Branch creation - "before 8am on Friday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 1 additional dependency was updated

Details:

Package	Change
github.com/google/go-containerregistry	v0.20.1 -> v0.20.2

[coveralls]

coverage: 79.91%. remained the same
when pulling 909b986 on renovate/external-dependencies
into 9eba4a5 on master.