2.27.0

What's Changed

• ROX-12238: Add node analysis package by @jvdm in #911
• Do not analyze language vulns unless the feature is enabled by @jvdm in #924
• Refactor common detection function to its own package by @jvdm in #926
• Update style checks by @RTann in #902
• Statically build scanner by @connorgorman in #918
• CI: Continue even with GitHub comment error by @RTann in #933
• Copy over stackrox/stackrox#3032 by @RTann in #931
• ROX-12226: Fetch RHELv2 unpatched CVE components resolution status and store them in scanner db by @daynewlee in #935
• Minor updates for #911 by @RTann in #936
• Bump google.golang.org/api from 0.95.0 to 0.96.0 by @dependabot in #938
• Bump github.com/google/go-cmp from 0.5.8 to 0.5.9 by @dependabot in #932
• Fix local deployment by @RTann in #942
• RHBA-2022:5747 CVSSv3 update by @RTann in #939
• Update docker-entrypoint.sh to match latest version by @RTann in #940
• Update go.mods to 1.18 by @RTann in #944
• ROX-12556: Always initialize from scratch by @RTann in #941
• ROX-12735: add automation to enter new community PRs to OSS Triage board automatically by @tommartensen in #946
• update .editorconfig for protobufs by @RTann in #945
• Bump cloud.google.com/go/storage from 1.26.0 to 1.27.0 by @dependabot in #948
• Bump google.golang.org/api from 0.96.0 to 0.98.0 by @dependabot in #949
• Bump github.com/quay/goval-parser from 0.8.7 to 0.8.8 by @dependabot in #950
• Update stackrox/stackrox dependency by @RTann in #947
• fix resolution state for packages with modules by @RTann in #937
• fix tag used for hourly CI runs by @RTann in #954
• Use http consts for HTTP methods by @dhaus67 in #958
• Update stackrox dependency by @RTann in #959
• Use ROX_SCANNER_DB_INIT env var in ScannerDB initContainer by @RTann in #960
• Bump github.com/containers/image/v5 from 5.20.0 to 5.23.0 by @dependabot in #962
• Update osrelease and redhatrelease detectors to detect Rocky Linux as… by @msierks in #745
• Pass correct arguments to tar when creating db bundle by @vladbologa in #964
• CI: Fix missing CLUSTER_NAME by @gavin-stackrox in #972
• Bump github.com/spf13/cobra from 1.5.0 to 1.6.0 by @dependabot in #969
• Bump github.com/opencontainers/image-spec from 1.1.0-rc1 to 1.1.0-rc2 by @dependabot in #970
• Bump google.golang.org/grpc from 1.49.0 to 1.50.0 by @dependabot in #971
• Update github.com/knqyf263/go-rpm-version dependency by @RTann in #976
• Bump google.golang.org/api from 0.98.0 to 0.99.0 by @dependabot in #978
• ROX-12577 Scanner: load Istio dump by @daynewlee in #955
• e2e: Update (asp|dot)net fixedby version by @RTann in #982
• ROX-12350: Detect CVE-2022-22978 by @RTann in #930
• CI: gate "upload-db-dump" for tag by @RTann in #979
• CI: Cleanup dangling processes by @RTann in #980
• Bump hashstructure to v2 by @RTann in #977
• Deprecate RHELv2PackageInfo by @RTann in #928
• Bump google.golang.org/grpc from 1.50.0 to 1.50.1 by @dependabot in #985
• Bump google.golang.org/api from 0.99.0 to 0.100.0 by @dependabot in #986
• Make gRPC service structs forward-compatible by embedding Unimplemented.. types by @misberner in #987
• Bump github.com/stretchr/testify from 1.8.0 to 1.8.1 by @dependabot in #990
• Bump github.com/spf13/cobra from 1.6.0 to 1.6.1 by @dependabot in #988
• ROX-10613: Use ubi-minimal for scanner-db by @janisz in #956
• Bump google.golang.org/api from 0.100.0 to 0.101.0 by @dependabot in #989
• fix E2E tests based on vuln updates by @RTann in #991
• Replace uses of *zip.ReadCloser with *zip.Reader when Close is not used by @RTann in #992
• Bump GKE provisioning timeout by @RTann in #995
• e2e: Test openssl vulns in RHEL 9 by @RTann in #998
• manually add CVE-2022-3602 and CVE-2022-3786 for ubuntu:22.04 by @RTann in #997
• ROX-13136: Added suport for ubuntu 22.10 by @ksurabhi91 in #996
• CI: Switch to containerd for k8s v1.23 support by @RTann in #1002
• Replace CVE-2022-3602 and CVE-2022-3786 with RHSA-2022:7288 for RHEL 9 and rescore CVE-2022-3602 by @RTann in #1001
• manually add CVE-2022-3602 and CVE-2022-3786 for ubuntu:22.10 by @RTann in #1000
• ROX-13348: Update offline dump source by @RTann in #1005
• Bump google.golang.org/api from 0.101.0 to 0.103.0 by @dependabot in #1007
• Bump github.com/ckaznocha/protoc-gen-lint from 0.2.4 to 0.3.0 by @dependabot in #1009
• Bump cloud.google.com/go/storage from 1.27.0 to 1.28.0 by @dependabot in #1008
• Bump ubi8-minimal from 8.6 to 8.7 by @janisz in #1010
• ROX-13435: fix RHELv2 updates by @RTann in #1012
• e2e: update fixedBy version for freetype in RHEL 8 by @RTann in #1011
• Add Istio request handler and business logics for fetching Istio CVEs by @daynewlee in #984
• Remove TODO in ubuntu:22.04 E2E test by @RTann in #1003
• Minor update for Istio scanning by @daynewlee in #1013
• ROX-12784: fix unpatched OpenShift 4 vulnerability detection by @RTann in #1006
• Generate new genesis dump by @RTann in #1015

New Contributors

• @tommartensen made their first contribution in #946
• @dhaus67 made their first contribution in #958
• @msierks made their first contribution in #745
• @ksurabhi91 made their first contribution in #996

Full Changelog: 2.26...2.27.0