dockle | Go Ecosystem Directory

Bot releases are hidden (Show)

dockle - v0.4.14 Latest Release

Published by tomoyamachi 9 months ago

Changelog

61a2fcc add archives release for loong64 (#245)
b08d9a3 update library version and go version (#252)
9f6e900 update caching suspicious directories and files (#247)
e8d60f4 add loong64 build support (#240)
99677e8 fix referred typo (#238)
2766b1e all flag use EnvVars (#237)
f15f69c add result summary at the sarif part (#236)
ecfb9e5 action files use go v1.20 (#235)
a104d5d update go version v1.20 (#234)
3c8fd18 chore: remove refs to deprecated io/ioutil (#233)

dockle - v0.4.13

Published by tomoyamachi over 1 year ago

Changelog

a63473b update goreleaser format (#232)
update deckoder for package updates (#231)
check password format in Password assessor (#230)
allow first add statement in config files (#229)

Full Changelog: https://github.com/goodwithtech/dockle/compare/v0.4.11...v0.4.13

dockle - v0.4.11

Published by tomoyamachi over 1 year ago

Changelog

a8fc623 update deckoder and docker version (#219)
62645c1 Update README to fix wrong license listing (#216)
8d04827 add instruction for github action (#214)

dockle - v0.4.10

Published by tomoyamachi almost 2 years ago

Changelog

7ebf663 remove docker scheme from filename (#213)
9b57734 Update go version v1.19 (#212)

dockle - v0.4.9

Published by tomoyamachi almost 2 years ago

Changelog

09d597c update github.com/sylabs/sif/v2 for CVE-2022-39237 (#205)
7d067d8 fix: Include artifact locations in SARIF reports (#204)

dockle - v0.4.8

Published by tomoyamachi almost 2 years ago

Changelog

3fbe4cf env key should not contain space (#203)

dockle - v0.4.7

Published by tomoyamachi about 2 years ago

Changelog

87ae713 add use-xdg option (#201)

dockle - v0.4.6

Published by tomoyamachi about 2 years ago

Changelog

43736af remove windows build from goreleaser
ff13dd0 Skip assessment if environment variable is empty (#194)
d62b963 Add version-up confirmation flag and skip the latest version confirmation by default (#193)
b7b64e3 pkg/assessor/manifest: Add sensitive variable names checks (#189)
da1a15c Avoid casting the result of fetchLocation (#192)
fce73ce Add instructions for Microsoft PowerShell (#190)
becf0d8 fix command of removing setgid permission (#187)
d8c63cb Verbose "not found version patterns" error (#184)
08071c0 Fix fetch of latest version (#183)
b9072c9 Move new app initialization out of main (#178)

dockle - v0.4.5

Published by tomoyamachi over 2 years ago

Changelog

f39e932 update modules (#177)
5a874fb add a cert-path parameter to allow private docker certs for tcp connections (#176)

dockle - v0.4.4

Published by tomoyamachi over 2 years ago

Changelog

ed3312a feat: accept docker daemon host via flag (#171)
a4295a7 update docker login in action (#172)
081a52b Add sponsorship (#168)
88a6bf7 Update go-sarif version (#167)
555c918 docs: fix several typos (#165)
09a495f Add the option to run Dockle programmatically (#162)
15cfad2 Arch Linux: Improve installation section (#160)
7d78eb3 Add asdf installation instructions to read-me (#163)

dockle - v0.4.3

Published by tomoyamachi about 3 years ago

Changelog

6b27dc5 stop to check file extensions that high likelihood of false positives (#158)

Docker images

docker pull goodwithtech/dockle:v0.4.3
docker pull ghcr.io/goodwithtech/dockle:v0.4.3

dockle - v0.4.2

Published by tomoyamachi about 3 years ago

Changelog

a80c45b remove pem file from sensitive file extensions (#157)

Docker images

docker pull goodwithtech/dockle:v0.4.2
docker pull ghcr.io/goodwithtech/dockle:v0.4.2

dockle - v0.4.1

Published by tomoyamachi about 3 years ago

Changelog

4e1ad0d apt command validator consider commands order (#153)
ff9e964 bugfix: DKL-DI-0005 false positive #151 (#152)

Docker images

docker pull goodwithtech/dockle:v0.4.1
docker pull ghcr.io/goodwithtech/dockle:v0.4.1

dockle - v0.4.0

Published by tomoyamachi about 3 years ago

Changelog

bba0267 check suspicious file extensions and enhanced suspicious filename validators (#150)
b68ff92 add options: accept-key (#149)
add options: accept-file and accept-file-extension

See here for details.

d873a3d IGNORE level results only show in debug mode (#148)
3feabf0 enhanced error message (#147)

Docker images

docker pull goodwithtech/dockle:v0.4.0
docker pull ghcr.io/goodwithtech/dockle:v0.4.0

dockle - v0.3.17

Published by tomoyamachi about 3 years ago

Changelog

a5e4160 update deckoder: respect DOCKER_CONFIG files (#146)
ab4d6f1 fix scan_test (#145)
565c55f add no-color option (#144)
5b83597 use static image (#143)
deee6fe implement quiet mode (#142)
d619c56 not follow redirects when a client checks version (#141)

Docker images

docker pull goodwithtech/dockle:v0.3.17
docker pull ghcr.io/goodwithtech/dockle:v0.3.17

dockle - v0.3.16

Published by tomoyamachi about 3 years ago

Changelog

0e44bbb allow apt(-get) update && upgrade (#138)
06cb752 buildkit: check ADD statements (#137)
2f941a8 install on Linux fails copy & paste from git UI (#127)
4298b9d Fix SARIF label for warn level (#131)