Commit a6f75fe 1 parent 6bc6568 commit a6f75fe Copy full SHA for a6f75fe
File tree 3 files changed +6
-4
lines changed
3 files changed +6
-4
lines changed Original file line number Diff line number Diff line change 1111 - ' gobintests.yml'
1212 branches :
1313 - master
14+ - release/*
1415 tags :
1516 - ' v*' # Push events to matching v*, i.e. v1.0, v20.15.10
1617 workflow_dispatch :
Original file line number Diff line number Diff line change @@ -4,7 +4,7 @@ LABEL maintainer="AppThreat" \
44 org.opencontainers.image.authors="Team AppThreat <cloud@appthreat.com>" \
55 org.opencontainers.image.source="https://github.com/owasp-dep-scan/dep-scan" \
66 org.opencontainers.image.url="https://appthreat.com" \
7- org.opencontainers.image.version="5.0.0 " \
7+ org.opencontainers.image.version="5.2.x " \
88 org.opencontainers.image.vendor="appthreat" \
99 org.opencontainers.image.licenses="MIT" \
1010 org.opencontainers.image.title="dep-scan" \
@@ -73,7 +73,8 @@ RUN set -e; \
7373 && sdk offline enable \
7474 && mv /root/.sdkman/candidates/* /opt/ \
7575 && rm -rf /root/.sdkman \
76- && npm install -g @cyclonedx/cdxgen \
76+ && npm install -g @cyclonedx/cdxgen@^9.11.5 \
77+ && cdxgen --version \
7778 && curl -LO "https://dl.google.com/go/go${GO_VERSION}.linux-${GOBIN_VERSION}.tar.gz" \
7879 && tar -C /usr/local -xzf go${GO_VERSION}.linux-${GOBIN_VERSION}.tar.gz \
7980 && rm go${GO_VERSION}.linux-${GOBIN_VERSION}.tar.gz \
Original file line number Diff line number Diff line change 11[project ]
22name = " owasp-depscan"
3- version = " 5.2.3 "
3+ version = " 5.2.4 "
44description = " Fully open-source security audit for project dependencies based on known vulnerabilities and advisories."
55authors = [
66 {name = " Team AppThreat" email = " cloud@appthreat.com"
77]
88dependencies = [
99 " appthreat-vulnerability-db==5.5.10"
1010 " defusedxml"
11- " oras"
11+ " oras==0.1.26 "
1212 " PyYAML"
1313 " rich"
1414 " quart"
You can’t perform that action at this time.
0 commit comments