Releases: cultureamp/ecr-scan-results-buildkite-plugin
v1.6.3
What's Changed
- chore(deps): update module github.com/google/go-containerregistry to v0.20.1 by @cultureamp-renovate in #59
- chore(deps): update dependency golangci-lint to v1.60.1 by @cultureamp-renovate in #60
- chore(deps): update go to v1.23.0 by @cultureamp-renovate in #61
- chore(deps): dependency refresh by @cultureamp-renovate in #58
- Add renovate workflows triggers by @fleet-updates-culture-amp-sre in #66
- ci: upgrade golangci-lint version by @ctgardner in #69
- chore: add maintenance file by @liamstevens in #62
- chore(deps): dependency rollup by @cultureamp-renovate in #63
New Contributors
- @ctgardner made their first contribution in #69
- @liamstevens made their first contribution in #62
Full Changelog: v1.6.2...v1.6.3
v1.6.2
What's Changed
- chore(deps): update golangci/golangci-lint-action action to v6 by @cultureamp-renovate in #52
- chore(deps): update goreleaser/goreleaser-action action to v6 by @cultureamp-renovate in #55
- chore(deps): dependency refresh by @cultureamp-renovate in #48
Full Changelog: v1.6.0...v1.6.2
v1.6.1
What's Changed
- chore(deps): update golangci/golangci-lint-action action to v6 by @cultureamp-renovate in #52
- chore(deps): update goreleaser/goreleaser-action action to v6 by @cultureamp-renovate in #55
- chore(deps): dependency refresh by @cultureamp-renovate in #48
Full Changelog: v1.6.0...v1.6.1
v1.6.0
Features
- feat: Option to fail the build when scan results cannot be downloaded by @lucaswilric in #50
Fixes
- fix: failure reasons display by @jamestelfer in #57
Documentation updates
- docs: add contribution docs by @jamestelfer in #56
Minor/dependency updates
- chore: chore(deps): add renovate.json by @cultureamp-renovate in #38
- chore(deps): update go to v1.22.2 by @cultureamp-renovate in #40
- chore(deps): update module github.com/google/go-containerregistry to v0.19.1 by @cultureamp-renovate in #41
- chore(deps): update aws-sdk-go-v2 monorepo by @cultureamp-renovate in #43
- chore(deps): update public.ecr.aws/docker/library/golang docker tag to v1.22 by @cultureamp-renovate in #47
- chore(deps): update module golang.org/x/sys to v0.19.0 by @cultureamp-renovate in #46
- chore(deps): update module github.com/stretchr/testify to v1.9.0 by @cultureamp-renovate in #45
- chore(deps): update dependency golangci-lint to v1.57.2 by @cultureamp-renovate in #44
- chore(deps): dependency refresh by @cultureamp-renovate in #42
- chore(docs): update README to reference v1.5.1 by @fleet-updates-culture-amp-sre in #54
New Contributors
- @lucaswilric made their first contribution in #50
Full Changelog: v1.5.1...v1.6.0
v1.5.2-beta1
Beta release - failure reasons display
- fix: failure reasons display #57
v1.5.1 Fix to multi-platform vulnerability merging
All plans are perfect until...
There was an issue with merging vulnerability records for the same CVE but different OS packages. These are now merged correctly, and the plugin is displaying the correct results.
Note
See also the previous release, detailing possible IAM changes required.
What's Changed
- fix: result merging for multi-plat images needs to take PackageName and PackageVersion into account by @jamestelfer in #37
Full Changelog: v1.5.0...v1.5.1
v1.5.1-rc1
v1.5.0 Multi-platform image support (a.k.a. multi-architecture)
Headline changes
The plugin now supports multi-platform (multi-architecture) images. These are manifest list images that point to multiple other images, one for each target platform.
Since ECR only reports vulnerability scan results for each of the platform-specific images, the plugin now downloads the manifest list and uses the set of digests to retrieve the scan results for each target platform. The results are then merged and presented in a unified UI.
Important
While this release is created as a minor version update, there are changes that may affect some users.
Downloading manifest list images requires that the plugin has pull access to the target repository. See the permissions section of the README for details of the required IAM permissions.
What's Changed
- chore(deps): update ecr-scan-results-buildkite-plugin to v1.4.0 [CSRE-3451] by @fleet-updates-culture-amp-sre in #29
- feat: upgrade to Go 1.22 by @jamestelfer in #35
- fix: small QOL changes by @jamestelfer in #32
- ci: update to latest versions of actions in use by @jamestelfer in #34
- feat: limited multi-platform (architecture) image support by @jamestelfer in #33
- ci: coverage checking in tests by @jamestelfer in #36
- feat: multi-arch image support by @jamestelfer in #30
Full Changelog: v1.4.0...v1.5.0
v1.5.0-rc2
What's Changed
- chore(deps): update ecr-scan-results-buildkite-plugin to v1.4.0 [CSRE-3451] by @fleet-updates-culture-amp-sre in #29
- feat: upgrade to Go 1.22 by @jamestelfer in #35
- fix: small QOL changes by @jamestelfer in #32
- ci: update to latest versions of actions in use by @jamestelfer in #34
- feat: limited multi-platform (architecture) image support by @jamestelfer in #33
New Contributors
- @fleet-updates-culture-amp-sre made their first contribution in #29
Full Changelog: v1.4.0...v1.5.0-rc2
v1.5.0-rc1
Full Changelog: v1.5.0-beta4...v1.5.0-rc1