Skip to content

Latest commit

 

History

History
81 lines (56 loc) · 6.75 KB

CHANGELOG.md

File metadata and controls

81 lines (56 loc) · 6.75 KB

Changelog

1.2.1 (2025-02-16)

Bug Fixes

  • no push trigger for composition analysis (80655f7)

1.2.0 (2025-02-14)

Features

  • add Calibre for select images (5beb850)
  • add secret, misconfig and license scanners to trivy (44ea14b)
  • remove install libvirt and qemu as it is provided by Bazzite (c574f74)

Bug Fixes

  • Calibre flatpak name (6a27ed1)
  • no secret scanning in built image (797c547)
  • set default envs in workflows (44ea14b)

1.1.0 (2025-02-06)

Features

  • add philips-labs/tern-action@v1.1.0 (199197d)
  • colorize and format JSON output of GHAs via jq (bf3f8b1)
  • Create recompress-latest.yml (de8182f)
  • don't use control structures at large in ci workflows (bf3f8b1)
  • only run software composition analysis in default branch (1b4ec5e)
  • remove SCA from building workflow (4049b74)
  • run vulnerability-scan workflow once a day after build (1f4aff1)
  • separate composition-analysis workflow (b291541)
  • use oss-review-toolkit/ort-ci-github-action@v1 instead of running Trivy here (6020fe2)

Bug Fixes

  • align with build and sort things (4f93a00)
  • aligned executed times to execute sequentially after build (bf3f8b1)
  • build-image should run when it has changed (737646c)
  • differentiate ORT runs per built artifact (5aa28c4)
  • GitHub blocks actions/upload-artifact@v2 so use v4 (0a5acdb)
  • hand over full image name (1b4ec5e)
  • image reference in recompression workflow (959311d)
  • Job names were flat out wrong (03d162e)
  • must find non-build workflows in a (nested) subdirectory (cc9152e)
  • must find non-vuln workflows in a (nested) subdirectory (1845ccf)
  • no execution after change in composition-analysis.yml (cc73ad7)
  • paths-ignore filter in build ci (49dacef)
  • polished all of the decomposed ci workflows (bf3f8b1)
  • quoting around print output steps (e6b6127)
  • Rename composition-analysis to composition-analysis.yml (65742ba)
  • stall vuln-scan up to 3min (ff535fb)
  • Update build-image.yml to exclude recompress-latest.yml (7ab5213)
  • Update composition-analysis.yml to exclude recompress-latest.yml (c9c2bea)
  • Update vulnerability-scan.yml to exclude recompress-latest.yml (1f4aff1)
  • use only latest as singular tag to handle (a346222)

1.0.0 (2025-02-01)

Features

  • push zstd:chunked to latest-zstchk (61d1485)
  • switch Aubertit back to bazzite-asus-nvidia (0ddb4bf)

Bug Fixes