Update module github.com/aquasecurity/trivy-operator to v0.24.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/aquasecurity/trivy-operator	v0.22.0 -> v0.24.0

---

Release Notes

aquasecurity/trivy-operator (github.com/aquasecurity/trivy-operator)

v0.24.0

What's Changed

✨ Notable Changes ✨

• feat: Add extraEnv option to Helm chart by @​gnadaban in https://github.com/aquasecurity/trivy-operator/pull/2288

🐛 Notable Fixes 🐛

• fix: Missing credentials for downloading the java-db from private registry by @​tom1299 in https://github.com/aquasecurity/trivy-operator/pull/2353
• fix: config insecure when pull policy by @​tranthang2404 in https://github.com/aquasecurity/trivy-operator/pull/2228
• fix: add TRIVY_JAVA_DB_REPOSITORY to trivy configmap by @​louzadod in https://github.com/aquasecurity/trivy-operator/pull/2272
• chore: bump up Trivy version to fix CVE-2025-21613 and CVE-2025-21614 by @​afdesk in https://github.com/aquasecurity/trivy-operator/pull/2371
• fix: scanjob.customVolumesMount is not applied to the Built-Job by @​takutakahashi in https://github.com/aquasecurity/trivy-operator/pull/2241
• fix: set follow to false when retrieving logs by @​jrhunger in https://github.com/aquasecurity/trivy-operator/pull/2286
• fix: return the image manifest digest instead of image id by @​dkulchinsky in https://github.com/aquasecurity/trivy-operator/pull/2399

📝 Documentation && Miscellaneous 🔧

• chore: bump up Trivy to v0.58.0 by @​afdesk in https://github.com/aquasecurity/trivy-operator/pull/2350
• docs: Fix mage build command by @​tom1299 in https://github.com/aquasecurity/trivy-operator/pull/2332
• chore: disable stale bot by @​itaysk in https://github.com/aquasecurity/trivy-operator/pull/2382
• chore: bump up k8s deps to version 1.32 by @​afdesk in https://github.com/aquasecurity/trivy-operator/pull/2391
• chore(lint): Add support for linter in mage by @​simar7 in https://github.com/aquasecurity/trivy-operator/pull/2392
• chore: bump up Trivy version to v0.59.1 by @​afdesk in https://github.com/aquasecurity/trivy-operator/pull/2406

👒 Dependencies 👒

• build(deps): bump k8s.io/apiextensions-apiserver from 0.31.0 to 0.31.3 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2324
• build(deps): bump sigs.k8s.io/controller-runtime from 0.19.1 to 0.19.2 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2329
• build(deps): bump go.uber.org/automaxprocs from 1.5.3 to 1.6.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2327
• build(deps): bump aquaproj/aqua-installer from 3.0.2 to 3.1.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2326
• build(deps): bump github.com/onsi/ginkgo/v2 from 2.20.0 to 2.22.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2328
• build(deps): bump sigstore/cosign-installer from 3.6.0 to 3.7.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2277
• build(deps): bump actions/setup-python from 5.1.1 to 5.3.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2298
• build(deps): bump engineerd/setup-kind from 0.5.0 to 0.6.2 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2305
• build(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2276
• build(deps): bump golang.org/x/text from 0.19.0 to 0.21.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2355
• build(deps): bump golang.org/x/net from 0.30.0 to 0.32.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2354
• build(deps): bump codecov/codecov-action from 4 to 5 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2337
• build(deps): bump helm/kind-action from 1.10.0 to 1.11.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2357
• build(deps): bump golang.org/x/net from 0.32.0 to 0.34.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2370
• build(deps): bump helm/kind-action from 1.11.0 to 1.12.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2363
• build(deps): bump github.com/onsi/ginkgo/v2 from 2.22.0 to 2.22.2 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2374
• build(deps): bump sigs.k8s.io/controller-runtime from 0.19.2 to 0.19.4 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2373
• build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2388
• build(deps): bump helm/chart-testing-action from 2.6.1 to 2.7.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2387
• build(deps): bump aquaproj/aqua-installer from 3.1.0 to 3.1.1 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2400
• build(deps): bump actions/setup-python from 5.3.0 to 5.4.0 by @​dependabot in https://github.com/aquasecurity/trivy-operator/pull/2414

New Contributors

• @​tom1299 made their first contribution in https://github.com/aquasecurity/trivy-operator/pull/2332
• @​tranthang2404 made their first contribution in https://github.com/aquasecurity/trivy-operator/pull/2228
• @​louzadod made their first contribution in https://github.com/aquasecurity/trivy-operator/pull/2272
• @​takutakahashi made their first contribution in https://github.com/aquasecurity/trivy-operator/pull/2241
• @​gnadaban made their first contribution in https://github.com/aquasecurity/trivy-operator/pull/2288
• @​itaysk made their first contribution in https://github.com/aquasecurity/trivy-operator/pull/2382

Full Changelog: aquasecurity/trivy-operator@v0.23.0...v0.24.0

v0.23.0

Compare Source

Changelog

✨ Notable Changes ✨

• 693908e: feat: add options to Helm chart to load Trivy config from custom configmap or secret (#​2174) (@​kimdre)
• fadc65c: feat: add package purl in vuln report (#​2311) (@​hown3d)

🐛 Notable Fixes 🐛

• ac6de39: fix: fix check gcr service account (#​2200) (@​vadimceb)
• 7b0c518: fix: remove null checks values from ClusterComplianceReport in helm chart (#​2168) (@​verdel)
• 48d87f4: fix: vuln scan success criteria met (#​2292) (@​badgerspoke)

📝 Documentation 📝

• 96d4e72: docs: Grafana Dashboard - Add headless parameter to values.yaml (#​2190) (@​3xAG)
• 18e40db: docs: fix typo (#​2235) (@​pjonsson)

🔧 Miscellaneous 🔧

• 84422dc: chore: Update chart 0.24.1 (#​2180) (@​Dimonyga)
• 72ac532: chore: Use mirror.gcr.io instead ghcr.io as helm chart default (#​2331) (@​simar7)
• 763c60d: chore: bump up base alpine image to 3.20.3 (#​2320) (@​afdesk)
• 265309e: chore: bump up go version to 1.22.7 (#​2319) (@​afdesk)
• d4da6e5: chore: bump up kind for k8s v1.31 (#​2318) (@​afdesk)
• 6f3499c: chore: bump up trivy to v0.57.1 (#​2301) (@​afdesk)
• 5b2c1f7: chore: use mirror.gcr.io for trivy-check by default (#​2321) (@​afdesk)

👷 Other work 👷

• 3bbda93: platform and type - no metadata values (#​2179) (@​Dimonyga)
• 1880d76: - Updated cache.Options with a DefaultTransform function that removes managed fields and the "kubectl.kubernetes.io/last-applied-configuration" annotation from objects before storing them in the cache. (#​2300) (@​mjshastha)
• 81fdbc8: Add hashing for vulnKey. (#​2183) (@​kersten)
• 0f84528: Fix compliance typo (#​2210) (@​harryagstian)
• 41ff2ce: Update configuration.md, added sbom generation flag (#​2163) (@​Talbalash-legit)
• f8123a0: build(deps): bump actions/setup-python from 5.1.0 to 5.1.1 (#​2185) (@​dependabot[bot])
• 5b1ad3f: build(deps): bump aquaproj/aqua-installer from 3.0.1 to 3.0.2 (#​2315) (@​dependabot[bot])
• 5ddd8a4: build(deps): bump docker/login-action from 3.2.0 to 3.3.0 (#​2193) (@​dependabot[bot])
• 8bd760f: build(deps): bump github.com/aws/aws-sdk-go from 1.54.15 to 1.54.19 (#​2187) (@​dependabot[bot])
• 3517ca4: build(deps): bump github.com/aws/aws-sdk-go from 1.54.19 to 1.54.20 (#​2195) (@​dependabot[bot])
• 2cd18ea: build(deps): bump github.com/aws/aws-sdk-go from 1.54.20 to 1.55.5 (#​2215) (@​dependabot[bot])
• df12b1e: build(deps): bump github.com/aws/aws-sdk-go from 1.54.6 to 1.54.15 (#​2177) (@​dependabot[bot])
• d5d7e3d: build(deps): bump github.com/google/go-containerregistry (#​2186) (@​dependabot[bot])
• ec3d7c7: build(deps): bump github.com/google/go-containerregistry (#​2224) (@​dependabot[bot])
• 8674c19: build(deps): bump github.com/onsi/ginkgo/v2 from 2.19.0 to 2.19.1 (#​2203) (@​dependabot[bot])
• ca07821: build(deps): bump github.com/onsi/ginkgo/v2 from 2.19.1 to 2.20.0 (#​2223) (@​dependabot[bot])
• d422d2e: build(deps): bump github.com/onsi/gomega from 1.33.1 to 1.34.0 (#​2207) (@​dependabot[bot])
• f02c74b: build(deps): bump github.com/onsi/gomega from 1.34.0 to 1.34.1 (#​2214) (@​dependabot[bot])
• 377ef08: build(deps): bump golang.org/x/net from 0.26.0 to 0.27.0 (#​2176) (@​dependabot[bot])
• 5e7eb45: build(deps): bump golang.org/x/text from 0.16.0 to 0.17.0 (#​2222) (@​dependabot[bot])
• 38e0674: build(deps): bump golangci/golangci-lint-action from 6.0.1 to 6.1.0 (#​2213) (@​dependabot[bot])
• c4de896: build(deps): bump k8s.io/cli-runtime from 0.30.2 to 0.30.3 (#​2198) (@​dependabot[bot])
• 523b723: build(deps): bump sigstore/cosign-installer from 3.5.0 to 3.6.0 (#​2225) (@​dependabot[bot])
• 720a4e3: ci: bump GoReleaser up for private registry test (#​2334) (@​afdesk)
• 65f5425: ci: bump up GoReleaser to v2.4.8 (#​2323) (@​afdesk)
• f8e2cc2: refactor(misconf): Remove support for WARN in rego (#​2317) (@​simar7)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 91 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.23.4 -> 1.23.6
k8s.io/api	v0.32.0 -> v0.32.1
k8s.io/apimachinery	v0.32.0 -> v0.32.1
k8s.io/client-go	v0.32.0 -> v0.32.1
sigs.k8s.io/controller-runtime	v0.19.3 -> v0.20.0
cloud.google.com/go	v0.112.1 -> v0.116.0
cloud.google.com/go/compute/metadata	v0.5.0 -> v0.6.0
cloud.google.com/go/iam	v1.1.6 -> v1.2.2
github.com/Masterminds/semver/v3	v3.2.1 -> v3.3.0
github.com/Masterminds/sprig/v3	v3.2.3 -> v3.3.0
github.com/ProtonMail/go-crypto	v1.1.0-alpha.2 -> v1.1.5
github.com/aquasecurity/go-version	v0.0.0-20240603093900-cf8a8d29271d -> v0.0.1
github.com/aquasecurity/trivy	v0.53.0 -> v0.59.1
github.com/aquasecurity/trivy-checks	v0.13.0 -> v1.6.1
github.com/aquasecurity/trivy-db	v0.0.0-20231204103057-c212f374b52e -> v0.0.0-20241209111357-8c398f13db0e
github.com/aws/aws-sdk-go	v1.54.6 -> v1.55.6
github.com/aws/aws-sdk-go-v2/service/s3	v1.55.1 -> v1.74.1
github.com/aws/smithy-go	v1.20.2 -> v1.22.2
github.com/cloudflare/circl	v1.3.7 -> v1.5.0
github.com/containerd/containerd	v1.7.23 -> v1.7.25
github.com/containerd/errdefs	v0.3.0 -> v1.0.0
github.com/containerd/platforms	v0.2.1 -> v1.0.0-rc.1
github.com/containerd/typeurl/v2	v2.1.1 -> v2.2.3
github.com/cyphar/filepath-securejoin	v0.2.4 -> v0.3.6
github.com/docker/cli	v25.0.3+incompatible -> v27.5.0+incompatible
github.com/docker/docker	v26.1.5+incompatible -> v27.5.0+incompatible
github.com/docker/docker-credential-helpers	v0.8.0 -> v0.8.2
github.com/fatih/color	v1.17.0 -> v1.18.0
github.com/go-git/go-billy/v5	v5.5.0 -> v5.6.2
github.com/go-git/go-git/v5	v5.12.0 -> v5.13.2
github.com/golang/groupcache	v0.0.0-20210331224755-41bb18bfe9da -> v0.0.0-20241129210726-2c02b8208cf8
github.com/google/btree	v1.1.2 -> v1.1.3
github.com/google/go-containerregistry	v0.19.2 -> v0.20.3
github.com/google/s2a-go	v0.1.7 -> v0.1.8
github.com/googleapis/enterprise-certificate-proxy	v0.3.2 -> v0.3.4
github.com/googleapis/gax-go/v2	v2.12.3 -> v2.14.1
github.com/hashicorp/go-getter	v1.7.5 -> v1.7.8
github.com/hashicorp/hcl/v2	v2.20.1 -> v2.23.0
github.com/huandu/xstrings	v1.4.0 -> v1.5.0
github.com/jmespath/go-jmespath	v0.4.0 -> v0.4.1-0.20220621161143-b0104c826a24
github.com/jmoiron/sqlx	v1.3.5 -> v1.4.0
github.com/klauspost/compress	v1.17.9 -> v1.17.11
github.com/masahiro331/go-disk	v0.0.0-20220919035250-c8da316f91ac -> v0.0.0-20240625071113-56c933208fee
github.com/masahiro331/go-ext4-filesystem	v0.0.0-20231208112839-4339555a0cd4 -> v0.0.0-20240620024024-ca14e6327bbd
github.com/mattn/go-colorable	v0.1.13 -> v0.1.14
github.com/mattn/go-runewidth	v0.0.15 -> v0.0.16
github.com/moby/buildkit	v0.13.2 -> v0.18.2
github.com/open-policy-agent/opa	v0.65.0 -> v1.1.0
github.com/owenrumney/squealer	v1.2.2 -> v1.2.6
github.com/pjbgf/sha1cd	v0.3.0 -> v0.3.2
github.com/prometheus/common	v0.55.0 -> v0.61.0
github.com/rivo/uniseg	v0.4.4 -> v0.4.7
github.com/rubenv/sql-migrate	v1.5.2 -> v1.7.1
github.com/samber/lo	v1.39.0 -> v1.49.0
github.com/shopspring/decimal	v1.3.1 -> v1.4.0
github.com/skeema/knownhosts	v1.2.2 -> v1.3.0
github.com/spf13/cast	v1.6.0 -> v1.7.1
github.com/stretchr/testify	v1.9.0 -> v1.10.0
github.com/tchap/go-patricia/v2	v2.3.1 -> v2.3.2
github.com/zclconf/go-cty	v1.14.4 -> v1.16.2
github.com/zclconf/go-cty-yaml	v1.0.3 -> v1.1.0
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc	v0.53.0 -> v0.56.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	v0.53.0 -> v0.59.0
go.opentelemetry.io/otel	v1.28.0 -> v1.34.0
go.opentelemetry.io/otel/metric	v1.28.0 -> v1.34.0
go.opentelemetry.io/otel/sdk	v1.28.0 -> v1.34.0
golang.org/x/crypto	v0.28.0 -> v0.32.0
golang.org/x/mod	v0.21.0 -> v0.22.0
golang.org/x/net	v0.30.0 -> v0.34.0
golang.org/x/oauth2	v0.23.0 -> v0.25.0
golang.org/x/sync	v0.8.0 -> v0.10.0
golang.org/x/sys	v0.26.0 -> v0.29.0
golang.org/x/term	v0.25.0 -> v0.28.0
golang.org/x/text	v0.19.0 -> v0.21.0
golang.org/x/time	v0.7.0 -> v0.9.0
golang.org/x/tools	v0.26.0 -> v0.29.0
golang.org/x/xerrors	v0.0.0-20231012003039-104605ab7028 -> v0.0.0-20240716161551-93cc26a95ae9
google.golang.org/api	v0.172.0 -> v0.216.0
google.golang.org/genproto	v0.0.0-20240311173647-c811ad7063a7 -> v0.0.0-20241118233622-e639e219e697
google.golang.org/genproto/googleapis/api	v0.0.0-20240814211410-ddb44dafa142 -> v0.0.0-20250115164207-1a7da9e5054f
google.golang.org/genproto/googleapis/rpc	v0.0.0-20240814211410-ddb44dafa142 -> v0.0.0-20250115164207-1a7da9e5054f
google.golang.org/grpc	v1.67.1 -> v1.70.0
google.golang.org/protobuf	v1.35.1 -> v1.36.4
helm.sh/helm/v3	v3.15.1 -> v3.17.0
k8s.io/apiextensions-apiserver	v0.31.0 -> v0.32.1
k8s.io/apiserver	v0.31.0 -> v0.32.1
k8s.io/cli-runtime	v0.30.2 -> v0.32.1
k8s.io/component-base	v0.31.0 -> v0.32.1
k8s.io/kubectl	v0.30.1 -> v0.32.1
mvdan.cc/sh/v3	v3.8.0 -> v3.10.0
sigs.k8s.io/kustomize/api	v0.15.0 -> v0.18.0
sigs.k8s.io/kustomize/kyaml	v0.15.0 -> v0.18.1