v2.0.0

What's Changed

• PLT-2465 Build and use our own binary by @lucaswilric in #11

New Contributors

• @lucaswilric made their first contribution in #11

Full Changelog: v1.5.1...v2.0.0

v1.6.0-buildkite-internal

Full Changelog: v1.5.1...v1.6.0-buildkite-internal

v1.5.1-buildkite-test-only-4

Full Changelog: v1.5.1-buildkite-test-only-3...v1.5.1-buildkite-test-only-4

v1.3.0

Changelog

• a5af166 Add option to specify ignored vulnerabilities in a file
• 02bb3ad Call original retryer logic
• d17595d Log waiting errors
• dcc31c9 Make error fatal
• 87e82fe Merge pull request #6 from buildkite/log-fatal-error-waiting-fails
• bb4e615 Merge pull request #7 from buildkite/plt-1603-read-cves-to-ignore-from-a-file

v1.2.0

Changelog

• 4a46eee Add help text support
• 4e5032d Merge pull request #5 from buildkite/plt-1606-add-description-to-scan-annotation
• c2308f0 Update snapshots

v1.1.0

Changelog

• 42e44df Add basic filter tests
• 72315d3 Merge pull request #4 from buildkite/improve-results-ux
• bf087c6 Refactor filtering and add support for severity min level
• c7d7777 Render html for visual debugging
• 2e78aa1 Update readme
• 852d41a undefined < low

v1.0.0

Changelog

• 8eb443c Add CI checks for Go
• d735d68 Add CI steps to build and test
• 44b2c41 Add Docker publish action
• 99cb315 Add basic snapshot tests on report output
• 659fa5c Add release step
• 3a3d103 Add threshold support
• 1a6f3da Adjust for different command -- JSON structure
• 8b78edb Allow ignoring CVEs
• f94488b Avoid pagination in describe* calls which breaks text output
• 6da0581 Build, test and lint in docker
• f08c909 Bump Go version
• 4166d08 Change bash to run Go image with Docker
• 494e6f4 Cleanup makefile
• 8859dc3 Cleanup readme and bats file
• 2592669 Convert status failure annotation to a warning
• c7636eb Delete gh workflows
• dc7ed66 Docs: scratch image information
• c4bfffe Don't block CI when the image is unsupported
• 5313c4a Fallback to parsing env var arrays
• 02113c7 Fix goreleaser.yaml
• fd41134 Fix linter warnings
• ef32f6f Fix release role ARN
• c69e597 Fix: linter issues
• 346cf5d Flatten directory structure and update refs
• 74dd0dd Handle "PENDING" scan status
• 074463c Hide some implementation details
• 5981f2b Ignore local config files
• 05ce244 Implement plugin functionality in Go
• 923b205 Improve annotation messaging
• 4d46b39 Improve message when scan is not available
• e02e5a5 Initial commit
• c77f49f Log ignored vulnerabilities in CI
• 6c131c5 Make YAML indenting consistent
• e9a1511 Make release.sh executable
• 8b3afd8 Merge pull request #1 from buildkite/ignore-cves
• a2b5711 Merge pull request #1 from cultureamp/docs-scratch
• ed0c3f0 Merge pull request #10 from cultureamp/golang-spike
• f73cabd Merge pull request #11 from cultureamp/backstage-info-updates
• c060381 Merge pull request cultureamp#12 from cultureamp/ensure-failure
• 45908a2 Merge pull request cultureamp#13 from cultureamp/goreleaser
• 716e7d4 Merge pull request cultureamp#14 from cultureamp/go-upgrade
• 97e747f Merge pull request cultureamp#15 from cultureamp/backstage/github-ownership
• 39e932d Merge pull request cultureamp#16 from cultureamp/csre-2234/resolve-golang-vulns
• 0b865fd Merge pull request #2 from buildkite/release
• 17cef1f Merge pull request #2 from cultureamp/bm/fixingdescribeimage
• 7f1c1cf Merge pull request #3 from cultureamp/new-findings-structure
• 51e563e Merge pull request #4 from cultureamp/retry-fixes
• 83b721f Merge pull request #5 from cultureamp/no-paginate
• de67893 Merge pull request #6 from cultureamp/better-output
• a46f2c3 Merge pull request #7 from cultureamp/need-moar-stable
• 30eca20 Only fail a pipeline when there is a scan result
• 11c1c91 Output the digest being checked
• e794d67 Read ignore list from env
• 77dec9d Refactor polling variables
• f43f186 Reintroduce support for image-label
• 629982b Remove commented out branch filter
• fa63b85 Remove debug print
• 2297d36 Remove testing code
• 32eff32 Remove unnecessary helper file
• 91cf432 Show plugin env in hook script
• 6719403 Show the number of polling attempts
• 11039ed Simplify plugin config
• 6e0c4fe Trap command errors and annotate instead of failing
• 824a196 Treat ScanNotFound as a temporary error when polling
• ebb0176 Tweak README formatting
• 5a56129 Update README for latest version
• 46532a7 Update README.md
• 1b27833 Update documented examples to use next version
• d7ba84b Update download script to reference bk
• 17f3d3f Update go module name
• 608675a Update goreleaser
• 334c6b2 Update plugin authorship and description
• 447aeec Update plugin.yml to support ignore config
• d9d8e49 Update readme
• c3a4ce7 Update release script error handling
• 72fdaef Update version in README
• fe53144 Use a static distroless image for distribution
• 85f8690 Use command execution instead of syscall
• 634b691 Use git log for changelog
• 816197f When error occurs, keep annotation label under 100 chars
• 77ecfeb add URL for image scan findings
• 0837d17 add backstage metadata
• 1dc950f add image number header to annotations
• 5edec73 added +x back to solve unbound variable
• bd54945 added image-number parameter
• 1935f40 added in image-scan-findings
• a783498 added input validation, do our own polling, exit if polled too many times
• 8ec1266 added line breaks in annotation
• bf0cd65 added quotes for image-label
• 3155e3c added x
• 0c5501d changed image-number to image-label
• 7063b1d changed newlines in annotations
• ed393e9 check for jq, use span for aws permissions
• 331c826 chore: upgrade golang dependencies
• 5392c3f ci: add goreleaser workflow
• cc44688 ci: disable docker publish
• 5ea4cad ci: remove deprecated and unhelpful new linters
• fb90875 ci: update checkout actions for Node 16
• 58368a9 ci: use mod file to determine Go version
• d974c70 ci: use specific linter version
• c8663de deps: upgrade Go to 1.20
• f93ce86 different test function
• 674ee06 doc: Adds guidelines on vulnerability thresholds configuration (cultureamp#17)
• 27d2b13 echo IMAGE_LABEL
• 251dd7e feat: download release from GitHub directly
• 675c5b3 fix image_label messages
• 1989061 fix to annotations and use ecr wait
• 186b7c6 fix: avoid use of deprecated strings.Title func
• 5448988 fix: bats tests work with new bats-stub
• 0e71dda fix: function naming style
• 146cab1 fix: remove Docker publish entirely
• 9de561e fix: update Backstage catalog ownership to match Github teams
• f12589b fix: use correct variable style
• b0b491d fix: use existing context
• 10140b8 fixed annotation message
• 4b142ff fixed input tests
• 6ed2ee9 fixed link
• 1e06064 fixed style spelling error
• d373181 fixed syntax error
• b0798f0 fixed unbound variable when no labels
• 7c16b4b fixed vuln_count style and improved documentation
• e9a658b initial attempt at plugin
• 6f58659 print environment variables
• 2f51c56 removed another echo
• 3c04722 removed case statement
• 94a301f removed echos of annotations
• c8d97b3 removed empty string from count_pat and if vuln counts are "None" change to 0
• 2afa7f1 removed image-number
• 10aaf42 reverted image-number
• 39d3e16 reverted unbound variable changes
• 0264763 updated README to use latest version
• 30d8fa7 updated plugin spec, removed backticks
• eeb6a8b updated span style
• 4cec6b1 use annotation contexts
• 0ea4f4a use annotations and reduce polling frequency
• e9a6a76 use backticks for code