Skip to content

Commit 12b563b

Browse files
DmitriyLewenknqyf263
DmitriyLewen
and
knqyf263
authored
BREAKING: use normalized trivy-java-db (#3583)
Co-authored-by: knqyf263 <[email protected]>
1 parent 72a14c6 commit 12b563b

File tree

11 files changed

+65
-70
lines changed

11 files changed

+65
-70
lines changed

cmd/trivy/main.go

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -9,6 +9,8 @@ import (
99
"github.com/aquasecurity/trivy/pkg/commands"
1010
"github.com/aquasecurity/trivy/pkg/log"
1111
"github.com/aquasecurity/trivy/pkg/plugin"
12+
13+
_ "modernc.org/sqlite" // sqlite driver for RPM DB and Java DB
1214
)
1315

1416
var (

go.mod

Lines changed: 15 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ require (
2020
github.com/aquasecurity/testdocker v0.0.0-20230111101738-e741bda259da
2121
github.com/aquasecurity/tml v0.6.1
2222
github.com/aquasecurity/trivy-db v0.0.0-20230116084806-4bcdf1c414d0
23-
github.com/aquasecurity/trivy-java-db v0.0.0-20230201134457-514a75965135
23+
github.com/aquasecurity/trivy-java-db v0.0.0-20230209231723-7cddb1406728
2424
github.com/aquasecurity/trivy-kubernetes v0.3.1-0.20230124152305-a266786d8ded
2525
github.com/aws/aws-sdk-go v1.44.171
2626
github.com/aws/aws-sdk-go-v2 v1.17.3
@@ -65,7 +65,7 @@ require (
6565
github.com/secure-systems-lab/go-securesystemslib v0.4.0
6666
github.com/sigstore/rekor v1.0.1
6767
github.com/sosedoff/gitkit v0.3.0
68-
github.com/spf13/cobra v1.6.0
68+
github.com/spf13/cobra v1.6.1
6969
github.com/spf13/pflag v1.0.5
7070
github.com/spf13/viper v1.14.0
7171
github.com/stretchr/testify v1.8.1
@@ -80,19 +80,7 @@ require (
8080
google.golang.org/protobuf v1.28.1
8181
gopkg.in/yaml.v3 v3.0.1
8282
k8s.io/utils v0.0.0-20230115233650-391b47cb4029
83-
)
84-
85-
require (
86-
github.com/dustin/go-humanize v1.0.1 // indirect
87-
github.com/glebarez/go-sqlite v1.20.3 // indirect
88-
github.com/glebarez/sqlite v1.6.0 // indirect
89-
github.com/jinzhu/inflection v1.0.0 // indirect
90-
github.com/jinzhu/now v1.1.5 // indirect
91-
github.com/mattn/go-sqlite3 v1.14.16 // indirect
92-
github.com/moby/patternmatcher v0.5.0 // indirect
93-
github.com/moby/sys/sequential v0.5.0 // indirect
94-
github.com/russross/blackfriday/v2 v2.1.0 // indirect
95-
gorm.io/gorm v1.24.3 // indirect
83+
modernc.org/sqlite v1.20.3
9684
)
9785

9886
require (
@@ -204,6 +192,7 @@ require (
204192
github.com/docker/go-events v0.0.0-20190806004212-e31b211e4f1c // indirect
205193
github.com/docker/go-metrics v0.0.1 // indirect
206194
github.com/docker/go-units v0.5.0 // indirect
195+
github.com/dustin/go-humanize v1.0.1 // indirect
207196
github.com/emicklei/go-restful/v3 v3.9.0 // indirect
208197
github.com/emirpasic/gods v1.12.0 // indirect
209198
github.com/evanphx/json-patch v5.6.0+incompatible // indirect
@@ -258,6 +247,7 @@ require (
258247
github.com/jmoiron/sqlx v1.3.5 // indirect
259248
github.com/josharian/intern v1.0.0 // indirect
260249
github.com/json-iterator/go v1.1.12 // indirect
250+
github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51 // indirect
261251
github.com/kevinburke/ssh_config v0.0.0-20201106050909-4977a11b4351 // indirect
262252
github.com/klauspost/compress v1.15.12 // indirect
263253
github.com/knqyf263/go-rpmdb v0.0.0-20230201142403-697bc51b3948
@@ -274,6 +264,7 @@ require (
274264
github.com/mattn/go-colorable v0.1.12 // indirect
275265
github.com/mattn/go-isatty v0.0.17 // indirect
276266
github.com/mattn/go-runewidth v0.0.13 // indirect
267+
github.com/mattn/go-sqlite3 v1.14.16 // indirect
277268
github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
278269
github.com/microsoft/go-rustaudit v0.0.0-20220808201409-204dfee52032 // indirect
279270
github.com/mitchellh/copystructure v1.2.0 // indirect
@@ -284,8 +275,10 @@ require (
284275
github.com/mitchellh/reflectwalk v1.0.2 // indirect
285276
github.com/moby/buildkit v0.11.0
286277
github.com/moby/locker v1.0.1 // indirect
278+
github.com/moby/patternmatcher v0.5.0 // indirect
287279
github.com/moby/spdystream v0.2.0 // indirect
288280
github.com/moby/sys/mountinfo v0.6.2 // indirect
281+
github.com/moby/sys/sequential v0.5.0 // indirect
289282
github.com/moby/sys/signal v0.7.0 // indirect
290283
github.com/moby/term v0.0.0-20221128092401-c43b287e0e0f // indirect
291284
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
@@ -315,6 +308,7 @@ require (
315308
github.com/remyoudompheng/bigfft v0.0.0-20230126093431-47fa9a501578 // indirect
316309
github.com/rivo/uniseg v0.2.0 // indirect
317310
github.com/rubenv/sql-migrate v1.1.2 // indirect
311+
github.com/russross/blackfriday/v2 v2.1.0 // indirect
318312
github.com/saracen/walker v0.0.0-20191201085201-324a081bae7e
319313
github.com/sergi/go-diff v1.1.0 // indirect
320314
github.com/shibumi/go-pathspec v1.3.0 // indirect
@@ -375,10 +369,15 @@ require (
375369
k8s.io/klog/v2 v2.80.1 // indirect
376370
k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 // indirect
377371
k8s.io/kubectl v0.26.1 // indirect
372+
lukechampine.com/uint128 v1.2.0 // indirect
373+
modernc.org/cc/v3 v3.40.0 // indirect
374+
modernc.org/ccgo/v3 v3.16.13 // indirect
378375
modernc.org/libc v1.22.2 // indirect
379376
modernc.org/mathutil v1.5.0 // indirect
380377
modernc.org/memory v1.5.0 // indirect
381-
modernc.org/sqlite v1.20.3 // indirect
378+
modernc.org/opt v0.1.3 // indirect
379+
modernc.org/strutil v1.1.3 // indirect
380+
modernc.org/token v1.0.1 // indirect
382381
oras.land/oras-go v1.2.0 // indirect
383382
sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
384383
sigs.k8s.io/kustomize/api v0.12.1 // indirect

0 commit comments

Comments
 (0)