You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
The key has expired.
Features
Config de-duplication (moved some rules into the main config.toml)
Improve config validation for [[ignores]] sections
Add 4.14 configuration.
Add semver sort of stored config versions
Add --walk-scan flag to node scan. If set, the scan is using the same
algorithm as scan payload (walk the directory tree and scan all files).
Note that per-payload and per-tag configuration entries are still ignored
because neither tag nor component is set.
Add --rpm-scan flag to payload and image scan. If set, the scan is using
the same algorithm and rules as scan node (only scan files belonging to RPM
packages, and ignore per-payload and per-tag configuration entries).
Bug fixes
Fix error text in message when logging scan node failure/warning
Fix checking for duplicates in config validation logic