2.34.0

What's Changed

• chore(deps): update rhtap references (master) by @red-hat-konflux in #1423
• chore(deps): update rhtap references (master) by @red-hat-konflux in #1431
• Red Hat Konflux update scanner-db-slim by @red-hat-konflux in #1437
• build(deps): bump github.com/containers/image/v5 from 5.29.2 to 5.30.0 by @dependabot in #1435
• e2e: migrate GCR image to Quay by @RTann in #1441
• build(deps): bump cloud.google.com/go/storage from 1.38.0 to 1.39.0 by @dependabot in #1433
• ROX-20752: scanner-slim konflux onboarding by @tommartensen in #1429
• chore: Override cpu requests for bad days in Konflux by @msugakov in #1401
• build(deps): bump cloud.google.com/go/storage from 1.39.0 to 1.39.1 by @dependabot in #1442
• build(deps): bump google.golang.org/grpc from 1.62.0 to 1.62.1 by @dependabot in #1434
• build(deps): bump go.uber.org/ratelimit from 0.3.0 to 0.3.1 by @dependabot in #1443
• build(deps): bump google.golang.org/protobuf from 1.28.0 to 1.33.0 in /tools/linters by @dependabot in #1444
• chore(deps): use stackrox fork of gogo by @janisz in #1447
• ROX-22044: postgresql 15 by @RTann in #1416
• chore(deps): update rhtap references (master) by @red-hat-konflux in #1438
• chore: add expiry label to images by @RTann in #1446
• build(deps): bump the actions group with 1 update by @dependabot in #1448
• build(deps): bump github.com/golang/protobuf from 1.5.3 to 1.5.4 by @dependabot in #1449
• build(deps): bump github.com/PuerkitoBio/goquery from 1.9.0 to 1.9.1 by @dependabot in #1450
• build(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible by @dependabot in #1451
• chore(go): go1.21.8 by @RTann in #1452
• use custom bolthelper package by @RTann in #1455
• build(deps): bump the actions group with 1 update by @dependabot in #1459
• build(deps): bump github.com/distribution/reference from 0.5.0 to 0.6.0 by @dependabot in #1457
• build(deps): bump google.golang.org/api from 0.167.0 to 0.171.0 by @dependabot in #1458
• chore(go): bump go.mod to go1.21 by @RTann in #1456
• chore(deps): bump stackrox/rox dep by @RTann in #1454
• chore(deps): update rhtap references (master) by @red-hat-konflux in #1453
• build(deps): bump cloud.google.com/go/storage from 1.39.1 to 1.40.0 by @dependabot in #1460
• build(deps): bump github.com/go-git/go-git/v5 from 5.11.0 to 5.12.0 by @dependabot in #1461
• build(deps): bump google.golang.org/api from 0.171.0 to 0.172.0 by @dependabot in #1462
• chore(deps): update rhtap references (master) by @red-hat-konflux in #1463
• ROX-19862: Add manual entry for CVE-2023-32697 by @dcaravel in #1464
• build(deps): bump golang.org/x/sys from 0.18.0 to 0.19.0 by @dependabot in #1470
• chore: Expand RHACS in Konflux Dockerfile labels by @msugakov in #1473
• chore(deps): update rhtap references by @red-hat-konflux in #1466
• chore(ci): move docker image to quay by @RTann in #1474
• ROX-18606: Add multi-arch support for s390x and ppc64le using docker buildx by @kcrane in #1469
• build(deps): bump actions/add-to-project from 1.0.0 to 1.0.1 in the actions group by @dependabot in #1479
• build(deps): bump google.golang.org/api from 0.172.0 to 0.173.0 by @dependabot in #1480
• build(deps): bump google.golang.org/grpc from 1.62.1 to 1.63.2 by @dependabot in #1471
• ROX-23563: Add diff-dumps to GHA artifacts by @BradLugo in #1468
• ROX-21744: allow sensor/scanner comms in non-ocp (2/2) by @dcaravel in #1478
• chore(deps): bump docker-registry-client by @RTann in #1481
• build(deps): bump golang.org/x/net from 0.22.0 to 0.23.0 by @dependabot in #1482
• build(deps): bump google.golang.org/api from 0.173.0 to 0.176.1 by @dependabot in #1485
• ROX-22889: Create new genesis dump by @dcaravel in #1486
• ROX-23848, ROX-23849, ROX-23853: update alpine and ubuntu support by @RTann in #1465
• chore(deps): update rhtap references by @red-hat-konflux in #1475
• chore: go1.21.9 by @RTann in #1491
• build(deps): bump github.com/PuerkitoBio/goquery from 1.9.1 to 1.9.2 by @dependabot in #1494
• chore(deps): update rhtap references by @red-hat-konflux in #1493
• fix: update external-contributor triaging workflow by @tommartensen in #1496
• build(deps): bump google.golang.org/api from 0.176.1 to 0.178.0 by @dependabot in #1498
• build(deps): bump golang.org/x/sys from 0.19.0 to 0.20.0 by @dependabot in #1499
• Fix RHSA-2022:7288 test case by @daynewlee in #1501
• ROX-18606, ROX-24135: add arm64, s390x, and ppc64le support to scanner ci builds by @kcrane in #1490
• chore(deps): update rhtap references to 2d39df1 by @red-hat-konflux in #1504
• ROX-24081: use make tag result in image names on Konflux by @tommartensen in #1503
• ROX-22474: push Konflux images to quay.io/rhacs-eng by @tommartensen in #1509
• chore(deps): update rhtap references to 1f62eaf by @red-hat-konflux in #1505
• ROX-23123: Verifying File Integrity while updating offline bundle by @daynewlee in #1497
• chore: stop logging pings by @RTann in #1511
• build(deps): bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1 by @dependabot in #1507
• build(deps): bump github.com/containers/image/v5 from 5.30.0 to 5.30.1 by @dependabot in #1514
• ROX-20232: Reduce duplication in Scanner Konflux pipelines by @msugakov in #1492
• build(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 by @dependabot in #1506
• fix(ci): account for CVE-2023-42366 by @RTann in #1516
• build(deps): bump google.golang.org/grpc from 1.63.2 to 1.64.0 by @dependabot in #1508
• style: Adjust YAML IDE formatting and reformat .tekton/*.yaml by @msugakov in #1515
• build(deps): bump github.com/containers/image/v5 from 5.30.1 to 5.31.0 by @dependabot in #1524
• build(deps): bump google.golang.org/api from 0.178.0 to 0.181.0 by @dependabot in #1525
• chore(deps): update rhtap references by @red-hat-konflux in #1510
• ROX-20232: Unify PR and push PipelineRun-s by @msugakov in #1526
• build(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 by @dependabot in #1528
• ROX-24116: Fix tags for init and other cleanups by @msugakov in #1527
• chore(deps): update rhtap references by @red-hat-konflux in #1530
• fix(ROX-23707): scanner-db-slim must have an initdb entrypoint directory by @tommartensen in #1536
• chore: Swap TAG_SUFFIX for SCANNER_TAG by @msugakov in #1532
• fix(ci): reorder gke tags and labels variable expansions by @BradLugo in #1513
• build(deps): bump golang.org/x/sys from 0.20.0 to 0.21.0 by @dependabot in #1537
• build(deps): bump google.golang.org/api from 0.182.0 to 0.183.0 by @dependabot in #1538
• ROX-20230: Let images on Konflux expire after 1 year by @tommartensen in #1539
• ROX-20855: Reduce container user permissions over docker-entrypoint.sh by @msugakov in #1542
• ROX-20236: Set release Dockerfile label explicitly by @msugakov in #1541
• build(deps): bump cloud.google.com/go/storage from 1.41.0 to 1.42.0 by @dependabot in #1543
• chore(deps): update konflux references by @red-hat-konflux in #1540
• fix(deps): switch to github.com/anchore/archiver/v3 by @RTann in #1544
• build(deps): bump google.golang.org/api from 0.183.0 to 0.185.0 by @dependabot in #1546
• ROX-23836: Add vulnerabilities container image by @BradLugo in #1523
• ROX-21124: Move release branch jobs from OSCI to GHA by @BradLugo in #1376
• build(deps): bump google.golang.org/api from 0.185.0 to 0.186.0 by @dependabot in #1550
• build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot in #1551
• build(deps): bump github.com/containers/image/v5 from 5.31.0 to 5.31.1 by @dependabot in #1552
• fix: remove directory name duplication in vulnerability data image by @BradLugo in #1553
• chore: official alpine:v3.20 support by @RTann in #1548
• chore(e2e): fix Ubuntu openssl test by @BradLugo in #1555
• chore: update status of Debian 10 by @RTann in #1559
• chore: revive legacy NVD feed and make toggleable by @dcaravel in #1560
• chore: update genesis dump targeting scanner 2.34 (acs 4.5.0) by @dcaravel in #1556

New Contributors

• @kcrane made their first contribution in #1469

Full Changelog: 2.33.0...2.34.0