Skip to content

Releases: docker/scout-cli

v1.18.2

21 Jul 14:31
@cdupuis cdupuis
v1.18.2
ff58efb
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.18.2 Latest
Latest

What's Changed

  • Minor fixes for DHI by @cdupuis
  • Add --skip-tlog for docker scout attest get to skip signature verification against the transparency log by @cdupuis
  • Do not filter CVEs that are marked with a VEX under_investigation statement by @cdupuis
  • Add predicate type human names for DHI FIPS and STIG attestations by @cdupuis

Contributors

cdupuis
Assets 9
Loading

v1.18.1

26 May 13:22
@cdupuis cdupuis
v1.18.1
ff58efb
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.18.1

What's Changed

  • Fix issues with attest list and attest get for local images by @cdupuis

Contributors

cdupuis
Loading

v1.18.0

13 May 08:51
@cdupuis cdupuis
v1.18.0
ff58efb
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.18.0

What's Changed

  • Added attest list and attest get commands to list attestations by @cdupuis
  • Support for DHI VEX documents by @cdupuis

Contributors

cdupuis
Loading

v1.17.1

16 Apr 07:46
@github-actions github-actions
v1.17.1
f300518
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.17.1 
Merge 0ed26ff2995b5161e1f022ce0d4c8784f734e8ac into 316180a8169b3d690…
Loading

v1.17.0

18 Mar 16:33
@github-actions github-actions
v1.17.0
686c12b
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.17.0 
Merge 06950db6f2ad31441a4c4de8d9a8f77e49939278 into 7c7e97734176f1bb6…
Loading

v1.16.3

18 Mar 16:33
@github-actions github-actions
v1.16.3
7c7e977
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.16.3 
Merge 9d83a0e466620fe314516a67fd5c25a555a0f0eb into 127b463cf08f9854d…
Loading

v1.16.2

18 Mar 16:33
@github-actions github-actions
v1.16.2
127b463
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.16.2 
Merge b2b49dd0f4f5ab8072365d3891136ff93dc4ea12 into d86161fc267f472f1…
Loading

v1.16.1

13 Dec 17:57
@github-actions github-actions
v1.16.1
634f6ad
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.16.1

What's Changed

  • Fix in-toto subject digest for the docker scout attestation add command by @cdupuis

Contributors

cdupuis
Loading

v1.16.0

13 Dec 06:35
@github-actions github-actions
v1.16.0
320f22e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.16.0

What's Changed

  • Add secret scanning to sbom command by @cdupuis
  • Keep original pattern to find nested matches too by @cdupuis
  • Make licenses unqiue by @cdupuis
  • Print platform in markdown output by @cdupuis
  • Normalize licenses using spdx license list by @cdupuis
  • Updates to make spdx output spec compliant by @cdupuis
  • Check dir exists before creating temp file by @chrispatrick
  • Update Go, crypto module and alpine by @cdupuis
  • Add support for attestations for images from Tanzu Application Catalog by @cdupuis
  • Fix behaviour with multi images in attest cmd by @cdupuis

Contributors

cdupuis and chrispatrick
Loading

v1.15.1

10 Nov 18:09
@cdupuis cdupuis
v1.15.1
a0662f0
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.15.1

What's Changed

New Contributors

Contributors

cdupuis and neilprosser
Loading