Skip to content

Releases: stackrox/scanner

2.14.0

13 May 23:39
@RTann RTann
2.14.0
463cefc
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.14.0
  • Support OCI images
  • Support Kubernetes scanning
  • Add vulnerability severity to scan results
  • Add ubuntu21:04 support
  • Scanner is now Red Hat Certified
  • Bump Go to 1.16.4
Assets 2
Loading

2.13.0

22 Apr 19:13
@RTann RTann
2.13.0
22e70d1
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.13.0
  • Remove RHEL/CentOS 5 support
  • Update Java support for package with the word "common"
Assets 2
Loading

2.12.2

17 Apr 00:07
@RTann RTann
2.12.2
fac9b93
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.12.2
  • Update Golang to 1.16.2
  • Update Alpine image to 3.13
  • Treat Java packages with "agent" as immutable
  • Reduce size of RHEL images
  • Fix CVE-2021-20305, RHSA-2021:1206 in RHEL images
  • Fix CVSS3.1 scores
Assets 2
Loading

2.12.1

05 Apr 22:33
@RTann RTann
2.12.1
e1c66c7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.12.1
Assets 2
Loading

2.12.0

31 Mar 01:12
@RTann RTann
2.12.0
4951ca6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.12.0
  • DSOP-related logic is removed
  • Expose the minimum required fixedBy version for a component to resolve all fixable vulnerabilities
  • Fix Distroless support
Assets 2
Loading

2.11.1

17 Mar 16:10
@connorgorman connorgorman
2.11.1
55ba2f3
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.11.1
  • Adds support for OCI versioned manifests
Assets 2
Loading

2.11.0

23 Feb 23:28
@RTann RTann
2.11.0
6567873
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.11.0
  • No longer match kernel/linux vulns in images
  • Fix Docker matching to account for Docker version format xx.yy.z
  • Officially add alpine:v3.13 support and mark oracle:5 as stale
  • Update kernel component support to return correct package name
  • Bug fixes
Assets 2
Loading

2.10.0

26 Jan 21:48
@RTann RTann
2.10.0
ec7c701
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.10.0

Adds support for OS-specific linux kernel vulnerabilities. OSes include: Amazon 2, Debian, Garden Linux, CentOS, RHEL, Ubuntu, etc

Assets 2
Loading

2.9.0

12 Jan 23:39
@RTann RTann
2.9.0
d07ad26
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.9.0
  • Blocklist Python pip
Assets 2
Loading

2.8.1

10 Dec 01:32
@RTann RTann
2.8.1
a458309
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.8.1
  • Add gRPC Ping to version control
    • Removes need for multiple empty.protos and fixes issue with registration
Assets 2
Loading