Skip to content

Releases: cultureamp/ecr-scan-results-buildkite-plugin

v1.6.3

06 Jan 00:39
54f2000
Compare
Choose a tag to compare

What's Changed

  • chore(deps): update module github.com/google/go-containerregistry to v0.20.1 by @cultureamp-renovate in #59
  • chore(deps): update dependency golangci-lint to v1.60.1 by @cultureamp-renovate in #60
  • chore(deps): update go to v1.23.0 by @cultureamp-renovate in #61
  • chore(deps): dependency refresh by @cultureamp-renovate in #58
  • Add renovate workflows triggers by @fleet-updates-culture-amp-sre in #66
  • ci: upgrade golangci-lint version by @ctgardner in #69
  • chore: add maintenance file by @liamstevens in #62
  • chore(deps): dependency rollup by @cultureamp-renovate in #63

New Contributors

Full Changelog: v1.6.2...v1.6.3

v1.6.2

29 Nov 04:54
9cd05ec
Compare
Choose a tag to compare

What's Changed

  • chore(deps): update golangci/golangci-lint-action action to v6 by @cultureamp-renovate in #52
  • chore(deps): update goreleaser/goreleaser-action action to v6 by @cultureamp-renovate in #55
  • chore(deps): dependency refresh by @cultureamp-renovate in #48

Full Changelog: v1.6.0...v1.6.2

v1.6.1

24 Jun 02:19
9cd05ec
Compare
Choose a tag to compare

What's Changed

  • chore(deps): update golangci/golangci-lint-action action to v6 by @cultureamp-renovate in #52
  • chore(deps): update goreleaser/goreleaser-action action to v6 by @cultureamp-renovate in #55
  • chore(deps): dependency refresh by @cultureamp-renovate in #48

Full Changelog: v1.6.0...v1.6.1

v1.6.0

24 Jun 01:32
1ad8012
Compare
Choose a tag to compare

Features

  • feat: Option to fail the build when scan results cannot be downloaded by @lucaswilric in #50

Fixes

Documentation updates

Minor/dependency updates

  • chore: chore(deps): add renovate.json by @cultureamp-renovate in #38
  • chore(deps): update go to v1.22.2 by @cultureamp-renovate in #40
  • chore(deps): update module github.com/google/go-containerregistry to v0.19.1 by @cultureamp-renovate in #41
  • chore(deps): update aws-sdk-go-v2 monorepo by @cultureamp-renovate in #43
  • chore(deps): update public.ecr.aws/docker/library/golang docker tag to v1.22 by @cultureamp-renovate in #47
  • chore(deps): update module golang.org/x/sys to v0.19.0 by @cultureamp-renovate in #46
  • chore(deps): update module github.com/stretchr/testify to v1.9.0 by @cultureamp-renovate in #45
  • chore(deps): update dependency golangci-lint to v1.57.2 by @cultureamp-renovate in #44
  • chore(deps): dependency refresh by @cultureamp-renovate in #42
  • chore(docs): update README to reference v1.5.1 by @fleet-updates-culture-amp-sre in #54

New Contributors

Full Changelog: v1.5.1...v1.6.0

v1.5.2-beta1

17 Jun 11:55
b954f1b
Compare
Choose a tag to compare
v1.5.2-beta1 Pre-release
Pre-release

Beta release - failure reasons display

  • fix: failure reasons display #57

v1.5.1 Fix to multi-platform vulnerability merging

26 Mar 22:12
a48da75
Compare
Choose a tag to compare

All plans are perfect until...

There was an issue with merging vulnerability records for the same CVE but different OS packages. These are now merged correctly, and the plugin is displaying the correct results.

Note

See also the previous release, detailing possible IAM changes required.

image

What's Changed

  • fix: result merging for multi-plat images needs to take PackageName and PackageVersion into account by @jamestelfer in #37

Full Changelog: v1.5.0...v1.5.1

v1.5.1-rc1

26 Mar 12:48
Compare
Choose a tag to compare
v1.5.1-rc1 Pre-release
Pre-release

Fixes:

Full Changelog: v1.5.0...v1.5.1-rc1

v1.5.0 Multi-platform image support (a.k.a. multi-architecture)

26 Mar 06:10
e98e0b5
Compare
Choose a tag to compare

Headline changes

The plugin now supports multi-platform (multi-architecture) images. These are manifest list images that point to multiple other images, one for each target platform.

Since ECR only reports vulnerability scan results for each of the platform-specific images, the plugin now downloads the manifest list and uses the set of digests to retrieve the scan results for each target platform. The results are then merged and presented in a unified UI.

Important

While this release is created as a minor version update, there are changes that may affect some users.

Downloading manifest list images requires that the plugin has pull access to the target repository. See the permissions section of the README for details of the required IAM permissions.

image

What's Changed

  • chore(deps): update ecr-scan-results-buildkite-plugin to v1.4.0 [CSRE-3451] by @fleet-updates-culture-amp-sre in #29
  • feat: upgrade to Go 1.22 by @jamestelfer in #35
  • fix: small QOL changes by @jamestelfer in #32
  • ci: update to latest versions of actions in use by @jamestelfer in #34
  • feat: limited multi-platform (architecture) image support by @jamestelfer in #33
  • ci: coverage checking in tests by @jamestelfer in #36
  • feat: multi-arch image support by @jamestelfer in #30

Full Changelog: v1.4.0...v1.5.0

v1.5.0-rc2

15 Mar 11:48
Compare
Choose a tag to compare
v1.5.0-rc2 Pre-release
Pre-release

What's Changed

  • chore(deps): update ecr-scan-results-buildkite-plugin to v1.4.0 [CSRE-3451] by @fleet-updates-culture-amp-sre in #29
  • feat: upgrade to Go 1.22 by @jamestelfer in #35
  • fix: small QOL changes by @jamestelfer in #32
  • ci: update to latest versions of actions in use by @jamestelfer in #34
  • feat: limited multi-platform (architecture) image support by @jamestelfer in #33

New Contributors

  • @fleet-updates-culture-amp-sre made their first contribution in #29

Full Changelog: v1.4.0...v1.5.0-rc2

v1.5.0-rc1

15 Mar 11:19
Compare
Choose a tag to compare
v1.5.0-rc1 Pre-release
Pre-release