All notable changes to this project will be documented in this file. Format of this file follows these guidelines. This project adheres to Semantic Versioning.
- add CodeFactor badge to main
README.md
- add LGTM badges to main
README.md
- add CircleCI docker executor authenticated pull
- per this article, added
explicit version to
setup_remote_docker
in CircleCI pipeline - add
run-pip-check.sh
to CircleCI pipeline
- when the vulnerability database is being built and an error occurs fetching vulnerabilities for a particular namespace, the error is now ignored vs before where the entire database build would fail
- after the vulnerability database is built a summary of the vulnerabilities is written to stdout
assess-image-risk.sh
now accepts command line argument--verbose
as well as-v
- mock 4.0.1 -> 4.0.2
dev-env
0.6.7 -> 0.6.21- fix
assess-vulnerabilities-risk.py
when whitelist wasn't specified - depend on
dev-env
for dev packages rather than referencing explicitly inrequirements.txt
clair
2.1.2 -> 2.1.6jsonschema
3.2.0 -> 4.16.0- start using CircleCI Scheduled Pipelines instead of scheduled workflows
- CircleCI setup_remote_docker version 19.03.13 -> 20.10.17
- Nothing
- Nothing
- mock 3.0.5 -> 4.0.1
- dev-env 0.6.5 -> 0.6.7
- centralized specification of postgres version # in
clair_cicd/__init.py
- postgres 9.5.2 -> 12.1
- Nothing
- add markdown lint in CI pipeline
- dev-env v0.6.3 -> v0.6.5
- Nothing
- Nothing
- Nothing
- Nothing
- Circle CI builds docker images for master branch every Monday, Wednesday and Friday at ~03:00 UTC
- clair v2.0.6 -> v2.1.2
- flake8 3.7.5 -> 3.7.6
- jsonschema 2.6.0 -> 3.0.1
- dev-env 0.5.14 -> 0.6.3
- Travis CI -> Circle CI
- removed
kill-and-remove-all-docker-containers.sh
since that command is now available fromdev-env
- Nothing
- pep8 -> pycodestyle
- clair v2.0.1 -> v2.0.6
- Nothing
- Nothing
- Clair 1.2.6 -> 2.0.1
- Nothing
- ...
- Now using Clair 1.2.6
- added
-np
(no docker image pull) command line option toassess-image-risk.sh
- ...
- initial release